CVE-2018-7445: MikroTik RouterOS Stack-Based Buffer Overflow Vulnerability
First published: Mon Mar 19 2018(Updated: )
A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes place, so it is possible for an unauthenticated remote attacker to exploit it. All architectures and all devices running RouterOS before versions 6.41.3/6.42rc27 are vulnerable.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MikroTik devices | ||
| MikroTik devices | <6.41.3 | |
| MikroTik devices | =6.4.2-rc11 | |
| MikroTik devices | =6.4.2-rc12 | |
| MikroTik devices | =6.4.2-rc14 | |
| MikroTik devices | =6.4.2-rc15 | |
| MikroTik devices | =6.4.2-rc18 | |
| MikroTik devices | =6.4.2-rc2 | |
| MikroTik devices | =6.4.2-rc20 | |
| MikroTik devices | =6.4.2-rc23 | |
| MikroTik devices | =6.4.2-rc24 | |
| MikroTik devices | =6.4.2-rc27 | |
| MikroTik devices | =6.4.2-rc5 | |
| MikroTik devices | =6.4.2-rc6 | |
| MikroTik devices | =6.4.2-rc9 | |
| <6.41.3 | ||
| =6.4.2-rc11 | ||
| =6.4.2-rc12 | ||
| =6.4.2-rc14 | ||
| =6.4.2-rc15 | ||
| =6.4.2-rc18 | ||
| =6.4.2-rc2 | ||
| =6.4.2-rc20 | ||
| =6.4.2-rc23 | ||
| =6.4.2-rc24 | ||
| =6.4.2-rc27 | ||
| =6.4.2-rc5 | ||
| =6.4.2-rc6 | ||
| =6.4.2-rc9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://seclists.org/fulldisclosure/2018/Mar/38
- http://www.securityfocus.com/bid/103427
- https://www.coresecurity.com/advisories/mikrotik-routeros-smb-buffer-overflow
- https://www.exploit-db.com/exploits/44290/
- https://www.coresecurity.com/core-labs/advisories/mikrotik-routeros-smb-buffer-overflow#vendor_update,
- https://mikrotik.com/download;
- https://nvd.nist.gov/vuln/detail/CVE-2018-7445
Frequently Asked Questions
What is the severity of CVE-2018-7445?
CVE-2018-7445 is rated as critical due to the potential for remote code execution.
How do I fix CVE-2018-7445?
To fix CVE-2018-7445, upgrade MikroTik RouterOS to version 6.41.4 or newer.
Who is affected by CVE-2018-7445?
CVE-2018-7445 affects MikroTik RouterOS versions up to and including 6.41.3.
What type of vulnerability is CVE-2018-7445?
CVE-2018-7445 is a buffer overflow vulnerability in the SMB service of MikroTik RouterOS.
Can attackers exploit CVE-2018-7445 without authentication?
Yes, attackers can exploit CVE-2018-7445 before authentication occurs, allowing for immediate code execution.
- agent/type
- agent/description
- agent/title
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/first-publish-date
- agent/references
- agent/author
- agent/event
- agent/source
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/tags
- agent/softwarecombine
- collector/nvd-cve
- source/NVD
- agent/severity
- agent/last-modified-date
- collector/nvd-api
- vendor/mikrotik
- canonical/mikrotik devices
- version/mikrotik devices/6.4.2-rc11
- version/mikrotik devices/6.4.2-rc12
- version/mikrotik devices/6.4.2-rc14
- version/mikrotik devices/6.4.2-rc15
- version/mikrotik devices/6.4.2-rc18
- version/mikrotik devices/6.4.2-rc2
- version/mikrotik devices/6.4.2-rc20
- version/mikrotik devices/6.4.2-rc23
- version/mikrotik devices/6.4.2-rc24
- version/mikrotik devices/6.4.2-rc27
- version/mikrotik devices/6.4.2-rc5
- version/mikrotik devices/6.4.2-rc6
- version/mikrotik devices/6.4.2-rc9