CVE-2018-7445

Published: Mar 19, 2018Modified: Nov 7, 2025CISA KEV

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs before authentication takes place, so it is possible for an unauthenticated remote attacker to exploit it. All architectures and all devices running RouterOS before versions 6.41.3/6.42rc27 are vulnerable.

Affected (13)

Products: Mikrotik: Routeros

1 product

Configuration A

13 vulnerable

Vulnerable Software	Affected Versions
Mikrotik Routeros	Before 6.41.3
Mikrotik Routeros	Version 6.42 rc11
Mikrotik Routeros	Version 6.42 rc12
Mikrotik Routeros	Version 6.42 rc14
Mikrotik Routeros	Version 6.42 rc15
Mikrotik Routeros	Version 6.42 rc18
Mikrotik Routeros	Version 6.42 rc20
Mikrotik Routeros	Version 6.42 rc23
Mikrotik Routeros	Version 6.42 rc24
Mikrotik Routeros	Version 6.42 rc2
Mikrotik Routeros	Version 6.42 rc5
Mikrotik Routeros	Version 6.42 rc6
Mikrotik Routeros	Version 6.42 rc9

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (9)

http://seclists.org/fulldisclosure/2018/Mar/38

Source: cve@mitre.org

ExploitMailing ListThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/103427

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://www.coresecurity.com/advisories/mikrotik-routeros-smb-buffer-overflow

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.exploit-db.com/exploits/44290/

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://seclists.org/fulldisclosure/2018/Mar/38

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitMailing ListThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/103427

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://www.coresecurity.com/advisories/mikrotik-routeros-smb-buffer-overflow

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://www.exploit-db.com/exploits/44290/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-7445

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

US Government Resource

Timeline

No history available yet.