SecuritySpace - CVE-2018-7445

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2018-7445

Description: A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes place, so it is possible for an unauthenticated remote attacker to exploit it. All architectures and all devices running RouterOS before versions 6.41.3/6.42rc27 are vulnerable.

Test IDs: 1.3.6.1.4.1.25623.1.0.140895

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-7445
BugTraq ID: 103427
http://www.securityfocus.com/bid/103427
https://www.exploit-db.com/exploits/44290/
http://seclists.org/fulldisclosure/2018/Mar/38
https://www.coresecurity.com/advisories/mikrotik-routeros-smb-buffer-overflow

CVE ID:	CVE-2018-7445
Description:	A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes place, so it is possible for an unauthenticated remote attacker to exploit it. All architectures and all devices running RouterOS before versions 6.41.3/6.42rc27 are vulnerable.
Test IDs:	1.3.6.1.4.1.25623.1.0.140895
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2018-7445 BugTraq ID: 103427 http://www.securityfocus.com/bid/103427 https://www.exploit-db.com/exploits/44290/ http://seclists.org/fulldisclosure/2018/Mar/38 https://www.coresecurity.com/advisories/mikrotik-routeros-smb-buffer-overflow