Netgear DGN Remote Code Execution Vulnerability Network Vulnerability

Summary

Netgear DGN1000 with firmware version prior to 1.1.00.48 and Netgear DGN2200 version 1 suffer from authentication bypass and command execution vulnerabilities. Attackers can leverage this vulnerability to bypass existing authentication mechanisms and execute arbitrary commands on the affected devices, with root privileges.

References

http://packetstormsecurity.com/files/121860/Netgear-DGN-Authentication-Bypass-Command-Execution.html

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

ArticleSetup Multiple Cross-Site Scripting and SQL Injection Vulnerabilities
Alchemy Eye HTTP Command Execution
Apple Safari RSS Feed Information Disclosure Vulnerability
Advanced Guestbook Index.PHP SQL Injection Vulnerability
Admin Bot 'news.php' SQL Injection Vulnerability

Take action and discover your vulnerabilities