N/A

RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and below are vulnerable to a DNS unrelated data attack. The router adds all A records to its DNS cache even when the records are unrelated to the domain that was queried. Therefore, a remote attacker controlled DNS server can poison the router's DNS cache via malicious responses with additional and untrue records.

N/A

N/A

MikroTik RouterOS 输入验证错误漏洞

MikroTik RouterOS是拉脱维亚MikroTik公司的一套基于Linux开发的路由器操作系统。该系统可部署在PC中，使其提供路由器功能。 MikroTik RouterOS 6.45.6 Stable及之前版本和6.44.5 Long-term及之前版本中存在安全漏洞。远程攻击者可借助恶意的响应利用该漏洞污染路由器的DNS缓存。

N/A

N/A