WINBOX VULNERABILITY

This post summerises the Winbox server vulnerability in RouterOS, discovered and fixed in RouterOS on April 23, 2018. Note that although Winbox was used as point of attack, the vulnerabilitty was in RouterOS.How it works: The vulnerability allowed a special tool to connect to the Winbox port, and request the system user database file. Versions affected:…