CVE-2018-14847 PoC — Winbox for MikroTik RouterOS 安全漏洞

Source

https://github.com/msterusky/WinboxExploit

Associated Vulnerability

Title:Winbox for MikroTik RouterOS 安全漏洞 (CVE-2018-14847)
Description:MikroTik RouterOS是一套路由操作系统。Winbox for MikroTik RouterOS是一个用于管理MikroTik RouterOS系统的应用程序。 Winbox for MikroTik RouterOS 6.42及之前版本中存在安全漏洞。远程攻击者可通过修改请求利用该漏洞绕过身份验证并读取任意文件。

Description

C# implementation of BasuCert/WinboxPoC [Winbox Critical Vulnerability (CVE-2018-14847)]

Readme

# WinboxExploit
C# implementation of BasuCert/WinboxPoC [Winbox Critical Vulnerability (CVE-2018-14847)]

Just reimplemented a solution from [https://github.com/BasuCert/WinboxPoC]


![Screenshot](screenshot.jpg)

File Snapshot


 [4.0K]  /data/pocs/0655a7c8f638744055238fb380e65ac70c96a228
├── [4.0K]  MST.MikroTik.WinboxExploit
│   ├── [1.1K]  Extensions.cs
│   ├── [2.2K]  MST.MikroTik.WinboxExploit.csproj
│   ├── [4.0K]  Properties
│   │   └── [1.4K]  AssemblyInfo.cs
│   ├── [ 446]  User.cs
│   └── [4.2K]  WinboxExploitManager.cs
├── [1.7K]  MST.MikroTik.WinboxExploit.sln
├── [4.0K]  MST.MikroTik.WinboxExploit.WinApp
│   ├── [ 178]  App.config
│   ├── [ 411]  App.xaml
│   ├── [ 349]  App.xaml.cs
│   ├── [1.9K]  MainWindow.xaml
│   ├── [1.5K]  MainWindow.xaml.cs
│   ├── [4.2K]  MST.MikroTik.WinboxExploit.WinApp.csproj
│   └── [4.0K]  Properties
│       ├── [2.4K]  AssemblyInfo.cs
│       ├── [2.8K]  Resources.Designer.cs
│       ├── [5.4K]  Resources.resx
│       ├── [1.1K]  Settings.Designer.cs
│       └── [ 195]  Settings.settings
├── [ 213]  README.md
└── [ 25K]  screenshot.jpg

4 directories, 19 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!