WINBOX VULNERABILITY

This post summerises the Winbox server vulnerability in RouterOS,┬ádiscovered and fixed in RouterOS on April 23, 2018. Note that although Winbox was used as point of attack, the vulnerabilitty was in RouterOS.How it works: The vulnerability allowed a special tool to connect to the Winbox port, and request the system user database file. Versions affected:…