본문 바로가기
취약점 정보2

Multiple Netgear routers 다중 취약점 발견 업데이트 권고

Ryansecurity 2016. 12. 12. 09:37
728x90

Overview

Netgear R7000 and R6400 routers and possibly other models are vulnerable to arbitrary command injection.

Description

CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')

Netgear R7000, firmware version 1.0.7.2_1.1.93 and possibly earlier, and R6400, firmware version 1.0.1.6_1.0.4 and possibly earlier, contain an arbitrary command injection vulnerability. By convincing a user to visit a specially crafted web site, a remote unauthenticated attacker may execute arbitrary commands with root privileges on affected routers. A LAN-based attacker may do the same by issuing a direct request, e.g. by visiting:

http://<router_IP>/cgi-bin/;COMMAND

An exploit leveraging this vulnerability has been publicly disclosed.

This vulnerability has been confirmed in the R7000 and R6400 models. Community reports also indicate the R8000, firmware version 1.0.3.4_1.1.2, is vulnerable. Other models may also be affected.

Impact

By convincing a user to visit a specially crafted web site, a remote unauthenticated attacker may execute arbitrary commands with root privileges on affected routers.

Solution

The CERT/CC is currently unaware of a practical solution to this problem and recommends the following workaround.

Disable web server

The very vulnerability that exists on affected routers may be used to temporarily disable the vulnerable web server until the device is restarted:
http://<router_IP>/cgi-bin/;killall$IFS'httpd'
Note that after performing this step, your router's web administration not be available until the device is restarted. Please see Bas' Blog for more details.

Discontinue use

Exploiting this vulnerability is trivial. Users who have the option of doing so should strongly consider discontinuing use of affected devices until a fix is made available.

Vendor Information (Learn More)

VendorStatusDate NotifiedDate Updated
Netgear, Inc.Affected09 Dec 201609 Dec 2016

If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

GroupScoreVector
Base9.3AV:N/AC:M/Au:N/C:C/I:C/A:C
Temporal9.3E:H/RL:U/RC:C
Environmental7.0CDP:ND/TD:M/CR:ND/IR:ND/AR:ND

References

728x90
저작자표시 비영리 변경금지

'취약점 정보2' 카테고리의 다른 글

PHP FormMail Generator에서 만든 PHP 코드에 다중 취약점  (0) 2016.12.12
구글 크롬 업데이트 권고  (0) 2016.12.12
Apache Tomcat Jmx 원격코드 실행 취약점 보안 업데이트 권고  (0) 2016.12.09
Kaspersky Internet Security 2017 패치 업데이트  (0) 2016.12.09
한컴오피스군 2016년 12월 08일 업데이트  (0) 2016.12.09

'취약점 정보2' Related Articles

티스토리툴바