ATAQUE Firmware 3.41

lionnet · May 31, 2019, 8:56pm

He detectado un nuevo tipo de ataque en donde editan el factory firmware poniendo una versión mas reciente que el upgrade Firmware entonces el MK no se actualiza y mientras tanto persiste la versión de Firmware vulnerable.

Se les ocurre que hacer?

Factory Firmware: 3.41
Current Firmware: 3.41
Upgrade Firmware: 3.33

barcelo · June 3, 2019, 7:35am

Hola.

No entiendo muy bien el problema, el firmware actual es 6.44.1 en el caso de Long term.

skylark · June 3, 2019, 8:01am

Please describe your problem in English so we can help you to resolve the problem you have.

lionnet · June 18, 2019, 2:26pm

El problema es que no me permite actualizar la firmware ya la nueva versión es anterior a la current.

Esta falla ya la he visto en varios equipos en Uruguay pero no hay información en internet.

Hay algún modo de editar manualmente esos datos en el archivo de configuración?

lionnet · June 18, 2019, 2:42pm

ok,

I don’t upgrade firmware because the current firmware is most recent than the new firmware. Its information view in the option routerboard.

is possible edit this information manually?

r00t · June 18, 2019, 6:04pm

Firmware version is not same as ROS version. There are no known vulnerabilities in firmware. Also you don’t have to update it if everything is running fine, it’s normal to run firmware with version different to ROS system version.

lionnet · June 24, 2019, 8:10pm

i need upgrade? Dont have solution?

mkx · June 25, 2019, 10:34am

If the screenshot you showed us is real, then your device is running an ancient version of Routeros … which is far bigger problem than version of firmware.

There are two pieces of software:

firmware - routerboot (similar to BIOS on PCs) which initializes device and boots the other piece of software …
Version information is shown in /system routerboard print .
Upgrade package is part of routeros system package and gets available after routeros is upgraded.
routeros (similar to OS on PCs - linux, windows, macOS) which runs all the time and performs router’s functions.
Version information is shown in /system resource print .
You can upgrade device using command /system package update install if the device has internet connectivity. If it doesn’t, then you can download upgrade packages from https://mikrotik.com/download , upload them to the device and restart it. If your device is running ancient ROS, it may be wise to upgrade to some intermediate version first … to ensure configuration is converted properly.