Details of VAR-201510-0781

ID

VAR-201510-0781

TITLE

Multiple NetGear Routers Remote Authentication Bypass Vulnerability

Trust: 0.3

sources: BID: 77032

DESCRIPTION

Multiple NetGear Routers are prone to a remote authentication-bypass vulnerability. An attacker can exploit this issue to bypass the authentication mechanism and perform unauthorized actions.

Trust: 0.3

sources: BID: 77032

AFFECTED PRODUCTS

vendor:	netgear	model:	wnr618	scope:	eq	version:	0	Trust: 0.3
vendor:	netgear	model:	wnr614	scope:	eq	version:	0	Trust: 0.3
vendor:	netgear	model:	wnr2020	scope:	eq	version:	0	Trust: 0.3
vendor:	netgear	model:	wnr1000v4	scope:	eq	version:	1.1.0.31	Trust: 0.3
vendor:	netgear	model:	wnr1000v4	scope:	eq	version:	1.1.0.28	Trust: 0.3
vendor:	netgear	model:	r3250	scope:	eq	version:	0	Trust: 0.3
vendor:	netgear	model:	n300	scope:	eq	version:	0	Trust: 0.3
vendor:	netgear	model:	jwnr2010v5	scope:	eq	version:	1.1.0.31	Trust: 0.3
vendor:	netgear	model:	jwnr2000v5	scope:	eq	version:	1.1.0.31	Trust: 0.3
vendor:	netgear	model:	jnr3000	scope:	eq	version:	0	Trust: 0.3
vendor:	netgear	model:	jnr1010v2	scope:	eq	version:	0	Trust: 0.3

sources: BID: 77032

THREAT TYPE

network

Trust: 0.3

sources: BID: 77032

TYPE

Access Validation Error

Trust: 0.3

sources: BID: 77032

EXTERNAL IDS

db:

BID

id:

77032

Trust: 0.3

sources: BID: 77032

REFERENCES

url:	http://www.netgear.com	Trust: 0.3
url:	http://www.csnc.ch/misc/files/advisories/csnc-2015-007_netgear_wnr1000v4_authbypass.txt	Trust: 0.3
url:	http://www.shellshocklabs.com/2015/09/part-1en-hacking-netgear-jwnr2010v5.html	Trust: 0.3
url:	http://seclists.org/fulldisclosure/2015/oct/31	Trust: 0.3

sources: BID: 77032

CREDITS

Daniel Haake

Trust: 0.3

sources: BID: 77032

SOURCES

db:

BID

id:

77032

LAST UPDATE DATE

2022-05-17T01:59:59.883000+00:00

SOURCES UPDATE DATE

db:

BID

id:

77032

date:

2015-10-07T00:00:00

SOURCES RELEASE DATE

db:

BID

id:

77032

date:

2015-10-07T00:00:00