Re: [44net] Recent news regarding Mikrotik remote root access

Correct, this was patched months ago. But surprisingly there are still a s***load of ppl out there that don’t patch or secure their routers/equipment. The posts I see almost daily about wisps wining that their network is hacked or routers are doing funny stuff is appalling... Ruben - ON3RVH > On 7 Oct 2018, at 17:39, Danny Messano (drmessano) <drmessano(a)gmail.com> wrote: > > This was patched months ago. Just another exploit for an old vuln. >> On Oct 7, 2018, 10:05 -0400, John Ricketts <john(a)quintex.com>om>, wrote: >> Fresh from DerbyCon/Jacob Barnes: >> >> "Hey @derbycon if you didn't wake up early enough to catch my talk, I just dropped a variation on CVE-2018-14847 that allows attackers to remotely root a Mikrotik router: " >> >> https://github.com/tenable/routeros/tree/master/poc/bytheway >>