SID 1:46076

Report a false positive

Rule Category

NETBIOS -- Snort has flagged on traffic on the netbios protocol, which is used to share files across a local network.

Alert Message

NETBIOS MikroTik RouterOS buffer overflow attempt

Rule Explanation

This event is generated when an attacker attempts to exploit a buffer overflow vulnerability present in the MikroTik RouterOS NetBIOS service. Impact: Attempted User Privilege Gain Details: Rule checks for an attempt to exploit a buffer overflow vulnerability present in the Mikrotik RouterOS NetBIOS service. Ease of Attack: Medium

What To Look For

No information provided

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

CVE-2018-7445

Rule Vulnerability

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.
CVE-2018-7445
 Loading description