Netgear SPH200D Multiple Security Vulnerabilities

Netgear SPH200D is prone to multiple directory traversal vulnerabilities, a cross-site scripting vulnerability, and a security bypass vulnerability.

Exploiting these issues will allow an attacker to steal cookie-based authentication information, execute arbitrary scripts in the context of the browser, bypass security restrictions, perform unauthorized actions, and gain access to the local files and sensitive information. Information harvested may aid in launching further attacks.

Netgear SPH200D Firmware 1.0.4.80 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus