I have been running penetration tests on a CCR1009 running RouterOS Level 6.
The only vulnerability that was detected was CVE-2002-0510 - The UDP implementation in Linux 2.4.x kernels keeps the IP Identification field at 0 for all non-fragmented packets, which could allow remote attackers to determine that a target system is running Linux.
I cannot seem to find any reference to it in relation to RouterOS.
Can anyone please let me know if there are any fixes for this vulnerability ?
thank you
This sums it up nicely:
https://www.suse.com/security/cve/CVE-2002-0510/
Note from the SUSE Security Team
SUSE does not consider this a security issue, as the information gained (Linux is running here) is very limited and could also gained by various other means. We are not planning to fix this issue.
and one more:
Red Hat do not consider this to be a security issue and there are many ways that you can identify or fingerprint a Linux machine. Users that wish to block fingerprinting can use various techniques to disguise their operating system, for example see
http://www.infosecwriters.com/text_resources/pdf/nmap.pdf
Especially because in the case of RouterOS, this information can’t be used against us, since RouterOS is mostly custom code anyway. No generic linux attack vector would apply anyway.