Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nova/bin/traceroute process. An authenticated remote attacker can cause a Denial of Service due via the loop counter variable.
References
Link | Resource |
---|---|
https://seclists.org/fulldisclosure/2020/May/30 | Mailing List Third Party Advisory |
https://seclists.org/fulldisclosure/2021/May/1 | Exploit Mailing List Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-05-03T15:13:44
Updated: 2021-07-21T13:48:32
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-20218
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-03T16:15:07.430
Modified: 2022-05-03T16:04:40.443
Link: CVE-2020-20218
JSON object: View
Redhat Information
No data.
CWE