QwikSec

Security Database

CVE

CWE

Training

CVE-2019-3978

Published: Oct 28, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

RouterOS versions 6.45.6 Stable, 6.44.5 Long-term, and below allow remote unauthenticated attackers to trigger DNS queries via port 8291. The queries are sent from the router to a server of the attacker's choice. The DNS responses are cached by the router, potentially resulting in cache poisoning

Vendor	Product	Versions
n/a	MikroTik RouterOS	affected `RouterOS 6.45.6 Stable and below. RouterOS 6.44.5 Long-term and below.`

Weaknesses (CWE)

References

https://www.tenable.com/security/research/tra-2019-46

x_refsource_MISC

http://packetstormsecurity.com/files/155036/MikroTik-RouterOS-6.45.6-DNS-Cache-Poisoning.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.