Intrusion Prevention

MikroTik.RouterOS.SMB.Buffer.Overflow

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in MikroTik RouterOS.
The vulnerability is caused by an error in the SMB service when handling malformed NetBIOS session messages. It allows a remote attacker to gain control of vulnerable systems via crafted NetBIOS session requests.

Affected Products

MikroTik RouterOS

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version, available from the web site.
https://mikrotik.com/download

CVE References

CVE-2018-7445