zoukankan      html  css  js  c++  java
  • mikrotik ros CVE-2019–3924 DUDE AGENT VULNERABILITY

    原文:

    https://blog.mikrotik.com/security/cve-20193924-dude-agent-vulnerability.html

    The issue is fixed in:

    • 6.43.12 (2019-02-11 14:39)
    • 6.44beta75 (2019-02-11 15:26)
    • 6.42.12 (2019-02-12 11:46)

    On February 21, Tenable published a new CVE, describing a vulnerability, which allows to proxy a TCP/UDP request through the routers Winbox port, if it's open to the internet. Tenable had previously contacted MikroTik about this issue, so a fix has already been released on February 11, 2019 in all RouterOS release channels.

    The issue does not affect RouterBOARD devices with default configuration, if the "Firewall router" checkbox was left enabled. The issue DOES NOT pose any risk to the router itself, file system is not vulnerable, the issue only allows redirection of connections if port is open. Device itself is safe.

    The issue is fixed in:

    • 6.43.12 (2019-02-11 14:39)
    • 6.44beta75 (2019-02-11 15:26)
    • 6.42.12 (2019-02-12 11:46)

    As always, MikroTik urges all users to keep their devices up to date, to be protected against all known vulnerabilities and make sure your routers administative ports are firewalled from untrusted networks. The "ip services" menu, where you can protect the "winbox" service, also affects the "dude agent" service, so if you have limited access with this menu, it also protects you from this issue. 

  • 相关阅读:
    C# 根据Word模版生成Word文件
    C# 添加事件
    类HTML语法显示格式化文本
    简易内存池实现
    12306订票助手
    网站前端的收藏
    摘抄 ander图片上传
    对于文件上传的几种处理方法,转载的
    对于 asp.net 中IhttpHandle,和IHttpModel中使用Session 会话
    KindEdit 的编辑插件的提问家
  • 原文地址:https://www.cnblogs.com/itfat/p/10435094.html
Copyright © 2011-2022 走看看