MikroTik Firewall & NAT Bypass Exploitation from WAN to LAN

JACOB BAINES | February 21, 2019

article image
In Making It Rain with MikroTik, I mentioned an undisclosed vulnerability in RouterOS. The vulnerability, which I assigned CVE-2019–3924, allows a remote, unauthenticated attacker to proxy crafted TCP and UDP requests through the router’s Winbox port. Proxied requests can even bypass the router’s firewall to reach LAN hosts. The proxying behavior is neat, but, to me, the most interesting aspect is that attackers on the WAN can deliver exploits to (nominally) firewall protected hosts on the LAN. This blog will walk through that attack. If you want to skip right to the, sort of complicated, proof of concept video then here it is To demonstrate this vulnerability, I need a victim. I don’t have to look far because I have a NUUO NVRMini2 sitting on my desk due to some previous vulnerability work. This NVR is a classic example of a device that should be hidden behind a firewall and probably segmented away from everything else on your network.

Spotlight

Intelivita

Intelivita is a global Software Development Firm specialising in web and mobile solutions, including mobile application development for iOS and Android Devices, web development across multiple frameworks, game development, and Augmented and Virtual Reality technologies. There have been some remarkable milestones in our journey, and we have delighted many Client's along the way, from small startups to established organizations.

OTHER ARTICLES

A historic data center quarter with over 15% of servers running on AMD

Article | August 10, 2021

The second quarter of 2020 was the strongest second quarter the data center market has ever recorded. Server shipments in what is seasonally a weak period exceeded 3.4 million units. Despite this record baseline, first data points on 2Q21 indicate server shipments exceeded 3.4 million units yet again. Demand for data center compute continues to be strong and we believe 2Q21 would have been even stronger had it not been for semiconductor supply shortages. We saw strong indication that shortages in CPU substrate materials and other components impacted server supply in 2Q21. This seems to have impacted Intel in particular with AMD gaining share in the quarter. AMD set their own record, for the first time crossing the 15% server market share threshold. It looks like demand from hyperscale cloud service providers, and Google in particular, has been a big contributing factor for AMD’s strong performance. The historic best AMD performance in the data center server market was in 2006 when 14% of the servers shipped were configured with an AMD CPU. 2Q21 indeed proves that the EPYC roadmap is highly competitive. In 2Q21, servers with arm-based CPUs again made up a

Read More

Demand for compute remains strong in 1Q21

Article | August 10, 2021

Demand for data center compute continues to be strong and we believe 1Q21 would have been even stronger had it not been for the semiconductor supply shortage. We learned from vendors that the flow of server CPUs out of TSMC and Intel’s fabs was steady in 1Q21 but supply of other components necessary to build a server was tight, including power semis, BMC and PCB substrate.

Read More

Constant connectivity in an SD-WAN network

Article | August 10, 2021

The Software Defined Wide Area Networks (SD-WAN) market is rapidly expanding. According to a recent report by MarketsandMarkets, the global SD-WAN market size is expected to grow from US$1 billion in 2018 to US$4.1 billion by 2023, at a Compound Annual Growth Rate (CAGR) of 32.7% during the forecast period. Alan Stewart–Brown, VP of EMEA at Opengear, says , SD-WAN has rapidly become the standard in enterprise deployments. An SD-WAN network can manage multiple types of connections, from LTE to broadband to multiprotocol label switching (MPLS) links.

Read More

How a 5G coronavirus conspiracy spread across Europe

Article | August 10, 2021

At about 9.30pm on Easter Monday, in the small Dutch town of Almere near Amsterdam, the fire brigade was called to put out a blaze at a large telecoms mast—the second fire of its kind that night in the area. Though neither of the Almere towers were equipped with any of the latest 5G telecoms equipment—in fact one was designed only for use by the emergency services—authorities soon concluded that the fires were perpetrated by vandals acting in the name of an unusual theory: that 5G networks have contributed to the coronavirus pandemic.

Read More

Spotlight

Intelivita

Intelivita is a global Software Development Firm specialising in web and mobile solutions, including mobile application development for iOS and Android Devices, web development across multiple frameworks, game development, and Augmented and Virtual Reality technologies. There have been some remarkable milestones in our journey, and we have delighted many Client's along the way, from small startups to established organizations.

Events