7 Oct
2018
7 Oct
'18
1:06 p.m.
This was announced yesterday at DerbyCon, by someone I respect quite a bit. I will let you know my results. Please note this is a variation on the existing known vulnerability, CVE-2018-14847, which was August 2, 2018.
On Oct 7, 2018, at 10:40, Danny Messano (drmessano) drmessano@gmail.com wrote:
This was patched months ago. Just another exploit for an old vuln.
On Oct 7, 2018, 10:05 -0400, John Ricketts john@quintex.com, wrote: Fresh from DerbyCon/Jacob Barnes:
"Hey @derbycon if you didn't wake up early enough to catch my talk, I just dropped a variation on CVE-2018-14847 that allows attackers to remotely root a Mikrotik router: "
https://github.com/tenable/routeros/tree/master/poc/bytheway