Community discussions

MUM Europe 2020
 
shantidev
just joined
Topic Author
Posts: 7
Joined: Thu Feb 27, 2014 10:27 pm

i use winbox and came across this security issue when i was

Mon Mar 03, 2014 8:35 am

looking for tutorials on how to access Mikrotik Routerboard's file system using winbox.

http://www.133tsec.com/2012/04/27/0day- ... n-exploit/


should i be worry about the above exploit? i dont want my computer/network to be hacked. so trying to be safe as i am new to mikrotik
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 24418
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia

Re: i use winbox and came across this security issue when i

Mon Mar 03, 2014 11:32 am

This is hardly any exploit. The article describes how to create a fake router, and somebody using Winbox can connect to this fake router, and make problems for this somebodys Windows computer.

So in short, don't connect with Winbox to unknown machines, and to protect your own, don't disable the default firewall on the public port. Make sure you disable the "admin" user and make your own user.
No answer to your question? How to write posts
 
CelticComms
Forum Guru
Forum Guru
Posts: 1766
Joined: Wed May 02, 2012 5:48 am

Re: i use winbox and came across this security issue when i

Mon Mar 03, 2014 2:22 pm

If connecting to a remote router then anybody upstream could divert traffic intended for an actual router to such a fake router so this is a perfectly valid concern.

Winbox is terrible from a security point of view!If you have to use it remotely then use it over an established VPN connection.
Interlynx | Networking and Information Security Consultants & Trainers | Email: routerlynx@gmail.com
BGP | EIGRP | OSPF | MPLS | Firewall | VPN | IPsec | Multicast | QOS | IPv4/6 | STP | VLAN | PON | AE | M2M | and more!

 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 24418
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia

Re: i use winbox and came across this security issue when i

Mon Mar 03, 2014 2:28 pm

This applies to any type of traffic, the best security would be a VPN tunnel, for sure.
No answer to your question? How to write posts
 
CelticComms
Forum Guru
Forum Guru
Posts: 1766
Joined: Wed May 02, 2012 5:48 am

Re: i use winbox and came across this security issue when i

Mon Mar 03, 2014 2:35 pm

This applies to any type of traffic, the best security would be a VPN tunnel, for sure.
True, but hopefully the other applications might show some signs that something is not right - e.g. invalid certs. Winbox has some particular vulnerabilities in that regard which are a serious concern when one considers that Winbox is downloading DLLs.
Interlynx | Networking and Information Security Consultants & Trainers | Email: routerlynx@gmail.com
BGP | EIGRP | OSPF | MPLS | Firewall | VPN | IPsec | Multicast | QOS | IPv4/6 | STP | VLAN | PON | AE | M2M | and more!

 
francisuk24
newbie
Posts: 28
Joined: Tue Mar 18, 2014 12:10 am
Location: United Kingdom
Contact:

Re: i use winbox and came across this security issue when i

Mon Mar 31, 2014 4:18 am

Winbox is terrible from a security point of view!If you have to use it remotely then use it over an established VPN connection.
Instead of VPN would Teamviewer be any good for security? As i tend to use RDP but not on the default port. http://www.wikihow.com/Change-the-Liste ... te-Desktop
RouterBoard RB750R2, RouterOS Level 4
ISP: Zen Internet via VDSL 2 > 74.68Mb Down / 17.84Mb Up
 
User avatar
rextended
Forum Guru
Forum Guru
Posts: 2950
Joined: Tue Feb 25, 2014 12:49 pm
Location: Capalbio, Tuscany, Italy

Re: i use winbox and came across this security issue when i

Mon Mar 31, 2014 5:07 am

Fascinating Idea...

When someone try to hijack my network :-x , I can inject some DLL on remote "hacker"... :lol:

Good vengeance... :twisted:

If someone try to crack one network, inject DLL on remote attacker, is a way to stop attacks...
I'm Italian, not English. Sorry for my imperfect grammar.

Who is online

Users browsing this forum: didipov and 48 guests