CVE-2017-17537

MikroTik RouterBOARD v6.39.2 and v6.40.5 allows an unauthenticated remote attacker to cause a denial of service by connecting to TCP port 53 and sending data that begins with many '\0' characters, possibly related to DNS.
References
Link Resource
https://www.exploit-db.com/exploits/43200/ Broken Link Third Party Advisory VDB Entry
https://www.exploit-db.com/exploits/43200/ Broken Link Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:mikrotik:routerboard:6.39.2:*:*:*:*:*:*:*
cpe:2.3:o:mikrotik:routerboard:6.40.5:*:*:*:*:*:*:*
cpe:2.3:h:mikrotik:routerboard:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:18

Type Values Removed Values Added
References () https://www.exploit-db.com/exploits/43200/ - Broken Link, Third Party Advisory, VDB Entry () https://www.exploit-db.com/exploits/43200/ - Broken Link, Third Party Advisory, VDB Entry

Information

Published : 2017-12-13 16:29

Updated : 2024-11-21 03:18


NVD link : CVE-2017-17537

Mitre link : CVE-2017-17537

CVE.ORG link : CVE-2017-17537


JSON object : View

Products Affected

mikrotik

  • routerboard
CWE
CWE-20

Improper Input Validation