Page 1 of 1

pppd vulnerable to buffer overflow

Posted: Thu Mar 05, 2020 10:43 pm
by mbeauverd
Hello !

Is Router OS vulnerable to the CVE-2020-8597 ?

https://www.kb.cert.org/vuls/id/782301/

Re: pppd vulnerable to buffer overflow

Posted: Thu Mar 05, 2020 10:54 pm
by jprietove
Hello !

Is Router OS vulnerable to the CVE-2020-8597 ?

https://www.kb.cert.org/vuls/id/782301/
In the link you provide, it is stated that mikrotik is not affected

Enviado desde mi Mi A2 mediante Tapatalk


Re: pppd vulnerable to buffer overflow

Posted: Thu Mar 05, 2020 11:55 pm
by tippenring
In https://www.kb.cert.org/vuls/id/782301/ Mikrotik responded on Feb 14 2020 with "The described issue is with EAP authentication, which RouterOS doesn't support for PPP."