MikroTik firewall vulnerability to allow a remote code execution and bypass Network Address Transmission. It is possible with help of routers winbox port.

What is NAT?

Jacob Baines has found the vulnerability to bypass firewall and NAT. He has claimed proxy request also can bypass.

Bypass the NAT

CVE-2019–3924 is the result of the router not enforcing authentication on network discovery probes. Under normal circumstances, The Dudeauthenticates with the router and uploads the probes over the Winbox port. However, one of the binaries that handles the probes (agent) fails to verify whether the remote user is authenticated.

Proof of concept

Credit : Jacob Baines

2 COMMENTS

  1. I think this is among the most significant information for me.
    And i’m glad reading your article. But should
    remark on few general things, The website style is wonderful, the articles is really nice : D.
    Good job, cheers

LEAVE A REPLY

Please enter your comment!
Please enter your name here