Hi all, I am sure this is old news for most but I don't recall seeing it cross this group. Since it has hit mainstream news, here it is. https://nvd.nist.gov/vuln/detail/CVE-2018-14847 The news says Mikrotik has a patch for it but many haven't applies the patch.Apparently the exploit allows bypassing the security so other code can be installed...mostly cryptocurrency mining has been reported. Regards,Robert VA7MF. Sent from my LG Mobile
Thanks for the note Robert, unfortunately yes, there are vulns around, so it’s important to keep things updated. In this case for gear specifically on the HamWAN Puget Sound network, we block WinBox protocol at the edges of the network, so internet attacks against this are unlikely, but that’s just a mitigating factor. Please do make sure to keep your modem updated. Nigel
On Sep 10, 2018, at 21:37, cq.ve5bob@gmail.com wrote:
Hi all,
I am sure this is old news for most but I don't recall seeing it cross this group. Since it has hit mainstream news, here it is.
https://nvd.nist.gov/vuln/detail/CVE-2018-14847 <https://nvd.nist.gov/vuln/detail/CVE-2018-14847>
The news says Mikrotik has a patch for it but many haven't applies the patch. Apparently the exploit allows bypassing the security so other code can be installed...mostly cryptocurrency mining has been reported.
Regards, Robert VA7MF.
Sent from my LG Mobile _______________________________________________ PSDR mailing list PSDR@hamwan.org http://mail.hamwan.net/mailman/listinfo/psdr
participants (2)
-
cq.ve5bob@gmail.com -
Nigel Vander Houwen