1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Mikrotik RouterOS Security ByPass CVE-2019-3924

Web Attack: Mikrotik RouterOS Security ByPass CVE-2019-3924

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a security bypass vulnerability in Mikrotik RouterOS.

Additional Information

MikroTik RouterOS is prone to a security-bypass vulnerability because it executes specially-crafted requests to both WAN and LAN clients. An attacker can exploit this issue to bypass firewall or to scan a network.

An attacker can exploit this issue to security restrictions and perform unauthorized actions. This may lead to further attacks.

Affected

  • MikroTik RouterOS version prior to 6.43.12, and 6.42.12 are vulnerable.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube