Netgear Products Remote Code Execution Vulnerability

A vulnerability was identified in Netgear products, a remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.

Impact

• Remote Code Execution

System / Technologies affected

• D6220 running firmware versions prior to 1.0.0.68
• D6400 running firmware versions prior to 1.0.0.102
• D7000v2 running firmware versions prior to 1.0.0.66
• D8500 running firmware versions prior to 1.0.3.60
• DC112A running firmware versions prior to 1.0.0.54
• EX7000 running firmware versions prior to 1.0.1.94
• EX7500 running firmware versions prior to 1.0.0.72
• R6250 running firmware versions prior to 1.0.4.48
• R6300v2 running firmware versions prior to 1.0.4.50
• R6400 running firmware versions prior to 1.0.1.68
• R6400v2 running firmware versions prior to 1.0.4.102
• R6700v3 running firmware versions prior to 1.0.4.102
• R6900P running firmware versions prior to 1.3.2.132
• R7000 running firmware versions prior to 1.0.11.116
• R7000P running firmware versions prior to 1.3.2.132
• R7100LG running firmware versions prior to 1.0.0.64
• R7850 running firmware versions prior to 1.0.5.68
• R7900 running firmware versions prior to 1.0.4.38
• R7900P running firmware versions prior to 1.4.1.68
• R7960P running firmware versions prior to 1.4.1.68
• R8000 running firmware versions prior to 1.0.4.68
• R8000P running firmware versions prior to 1.4.1.68
• R8300 running firmware versions prior to 1.0.2.144
• R8500 running firmware versions prior to 1.0.2.144
• RAX200 running firmware versions prior to 1.0.2.88
• RAX75 running firmware versions prior to 1.0.3.102
• RAX80 running firmware versions prior to 1.0.3.102
• RBR750 running firmware versions prior to 3.2.17.12
• RBR850 running firmware versions prior to 3.2.17.12
• RBS40V running firmware versions prior to 2.6.2.4
• RBS750 running firmware versions prior to 3.2.17.12
• RBS850 running firmware versions prior to 3.2.17.12
• RS400 running firmware versions prior to 1.5.0.68_hotfix
• WNDR3400v3 running firmware versions prior to 1.0.1.38
• WNR3500Lv2 running firmware versions prior to 1.2.0.66
• XR300 running firmware versions prior to 1.0.3.56

Solutions

Before installation of the software, please visit the vendor's web-site for more details.

• Apply fixes issued by the vendor:
  https://kb.netgear.com/000062820/Security-Advisory-for-Stack-based-Buffer-Overflow-Remote-Code-Execution-Vulnerability-on-Some-Routers-PSV-2020-0432

[ad_2]

Source link

Is your business effected by Cyber Crime?

If a cyber crime or cyber attack happens to you, you need to respond quickly. Cyber crime in its several formats such as online identity theft, financial fraud, stalking, bullying, hacking, e-mail fraud, email spoofing, invoice fraud, email scams, banking scam, CEO fraud. Cyber fraud can lead to major disruption and financial disasters. Contact Digitpol’s hotlines or respond to us online.

Digitpol is available 24/7.

Email: info@digitpol.com
ASIA +85239733884
Europe +31558448040
UK +44 20 8089 9944