CVE-2018-14847 PoC — Winbox for MikroTik RouterOS 安全漏洞

Source

https://github.com/msterusky/WinboxExploit

Associated Vulnerability

Title:Winbox for MikroTik RouterOS 安全漏洞 (CVE-2018-14847)
Description:MikroTik RouterOS through 6.42 allows unauthenticated remote attackers to read arbitrary files and remote authenticated attackers to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.

Description

C# implementation of BasuCert/WinboxPoC [Winbox Critical Vulnerability (CVE-2018-14847)]

Readme

# WinboxExploit
C# implementation of BasuCert/WinboxPoC [Winbox Critical Vulnerability (CVE-2018-14847)]

Just reimplemented a solution from [https://github.com/BasuCert/WinboxPoC]


![Screenshot](screenshot.jpg)

File Snapshot


 [4.0K]  /data/pocs/0655a7c8f638744055238fb380e65ac70c96a228
├── [4.0K]  MST.MikroTik.WinboxExploit
│   ├── [1.1K]  Extensions.cs
│   ├── [2.2K]  MST.MikroTik.WinboxExploit.csproj
│   ├── [4.0K]  Properties
│   │   └── [1.4K]  AssemblyInfo.cs
│   ├── [ 446]  User.cs
│   └── [4.2K]  WinboxExploitManager.cs
├── [1.7K]  MST.MikroTik.WinboxExploit.sln
├── [4.0K]  MST.MikroTik.WinboxExploit.WinApp
│   ├── [ 178]  App.config
│   ├── [ 411]  App.xaml
│   ├── [ 349]  App.xaml.cs
│   ├── [1.9K]  MainWindow.xaml
│   ├── [1.5K]  MainWindow.xaml.cs
│   ├── [4.2K]  MST.MikroTik.WinboxExploit.WinApp.csproj
│   └── [4.0K]  Properties
│       ├── [2.4K]  AssemblyInfo.cs
│       ├── [2.8K]  Resources.Designer.cs
│       ├── [5.4K]  Resources.resx
│       ├── [1.1K]  Settings.Designer.cs
│       └── [ 195]  Settings.settings
├── [ 213]  README.md
└── [ 25K]  screenshot.jpg

4 directories, 19 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!