Mikrotik RouterOS 5.* and 6.* sshd remote preauth heap corruption

From: king cope <isowarez.isowarez.isowarez@googlemail.com>
To: full-disclosure@lists.grok.org.uk,bugtraq@securityfocus.com,submissions@packetstormsecurity.com
Cc:
Subject: Mikrotik RouterOS 5.* and 6.* sshd remote preauth heap corruption
Date:


Hello lists,

here you find the analysis of a vulnerability I recently discovered.

Mikrotik RouterOS 5.* and 6.* sshd remote preauth heap corruption

http://kingcope.wordpress.com/2013/09/02/mikrotik-routeros-5-and-6-sshd-remote-preauth-heap-corruption/

Additionally it includes a way to drop into a development shell for
recent Mikrotik RouterOS versions.

Cheers :>

Kingcope





Copyright © 1995-2018 LinuxRocket.net. All rights reserved.