Correct, this was patched months ago. But surprisingly there are still a s***load of ppl out there that don’t patch or secure their routers/equipment. The posts I see almost daily about wisps wining that their network is hacked or routers are doing funny stuff is appalling... Ruben - ON3RVH > On 7 Oct 2018, at 17:39, Danny Messano (drmessano) <drmessano(a)gmail.com> wrote: > > This was patched months ago. Just another exploit for an old vuln. >> On Oct 7, 2018, 10:05 -0400, John Ricketts <john(a)quintex.com>om>, wrote: >> Fresh from DerbyCon/Jacob Barnes: >> >> "Hey @derbycon if you didn't wake up early enough to catch my talk, I just dropped a variation on CVE-2018-14847 that allows attackers to remotely root a Mikrotik router: " >> >> https://github.com/tenable/routeros/tree/master/poc/bytheway >>

I personally stay on the bugfix version and never had any troubles upgrading. But that is also why you need a lab environment to test things out before going to production. Just me .02$ ;) Ruben - ON3RVH

This was announced yesterday at DerbyCon, by someone I respect quite a bit. I will let you know my results. Please note this is a variation on the existing known vulnerability, CVE-2018-14847, which was August 2, 2018. > On Oct 7, 2018, at 10:40, Danny Messano (drmessano) <drmessano(a)gmail.com> wrote: > > This was patched months ago. Just another exploit for an old vuln. >> On Oct 7, 2018, 10:05 -0400, John Ricketts <john(a)quintex.com>om>, wrote: >> Fresh from DerbyCon/Jacob Barnes: >> >> "Hey @derbycon if you didn't wake up early enough to catch my talk, I just dropped a variation on CVE-2018-14847 that allows attackers to remotely root a Mikrotik router: " >> >> https://github.com/tenable/routeros/tree/master/poc/bytheway >>