Searching netgear software vulnerabilities

Netgear RP114 Cable/DSL Web Safe Router Firmwar

Cable/DSL | Firmware | Netgear | Router | RP114 | Safe | Web |

Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26, when configured to block traffic below port 1024, allows remote attackers to cause a denial of service (hang) via a port scan of the WAN port.


Cross-site scripting vulnerability in web admin

administration | vulnerability | Cross-site | arbitrary | attackers | interface | scripting | contains | another | execute | Routers | Gateway | NetGear | script | client | remote | allows | RT314 | RT311 | web | URL | via |

Cross-site scripting vulnerability in web administration interface for NetGear RT314 and RT311 Gateway Routers allows remote attackers to execute arbitrary script on another client via a URL that contains the script.


NETGEAR FVS318 running firmware 1.1 stores the

configuration | information | sensitive | password | readable | username | firmware | NETGEAR | running | allows | obtain | format | backup | FVS318 | stores | users | which | local | file | made |

NETGEAR FVS318 running firmware 1.1 stores the username and password in a readable format when a backup of the configuration file is made, which allows local users to obtain sensitive information.


Netgear RP114 Cable/DSL Web Safe Router Firmwar

Cable/DSL | Firmware | Netgear | Router | RP114 | Safe | Web |

Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26 uses a default administrator password and accepts admin logins on the external interface, which allows remote attackers to gain privileges if the password is not changed.


Netgear RM-356 and RT-338 series SOHO routers a

attackers | routers | service | Netgear | remote | RM-356 | denial | RT-338 | series | cause | allow | SOHO |

Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap.


Web-Based Administration in Netgear FVS318 VPN

Administration | attackers | Web-Based | service | Netgear | remote | denial | FVS318 | Router | allows | cause | VPN |

Web-Based Administration in Netgear FVS318 VPN Router allows remote attackers to cause a denial of service (no new connections) via a large number of open HTTP connections.


Netgear RP114 allows remote attackers to bypass

demonstrated | requesting | attackers | filtering | keyword | Netgear | allows | remote | bypass | number | large | using | based | RP114 | long | %20 | URL |

Netgear RP114 allows remote attackers to bypass the keyword based URL filtering by requesting a long URL, as demonstrated using a large number of %20 (hex-encoded space) sequences.


NetGear WG602 (aka WG602v1) Wireless Access Poi

NetGear | WG602 |

NetGear WG602 (aka WG602v1) Wireless Access Point firmware 1.04.0 and 1.5.67 has a hardcoded account of username "super" and password "5777364", which allows remote attackers to modify the configuration.


NetGear WG602 (aka WG602v1) Wireless Access Poi

NetGear | WG602 |

NetGear WG602 (aka WG602v1) Wireless Access Point 1.7.14 has a hardcoded account of username "superman" and password "21241036", which allows remote attackers to modify the configuration.


NETGEAR FVS318 running firmware 2.4, and possib

demonstrated | attackers | extension | versions | possibly | firmware | encoded | running | NETGEAR | filters | FVS318 | remote | allows | bypass | using | other | file | URLs | hex |

NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to bypass the filters using hex encoded URLs, as demonstrated using a hex encoded file extension.


Cross-site scripting (XSS) vulnerability in the

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in the log viewer in NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via a blocked URL phrase.


Zyxel P310, P314, P324 and Netgear RT311, RT314

attackers | interface | generates | firmware | pinging | running | Netgear | address | allows | remote | obtain | latest | WAN's | which | valid | Zyxel | RT311 | RT314 | reply | maps | P324 | side | P310 | P314 | MAC | WAN | LAN | ARP |

Zyxel P310, P314, P324 and Netgear RT311, RT314 running the latest firmware, allows remote attackers on the WAN to obtain the IP address of the LAN side interface by pinging a valid LAN IP address, which generates an ARP reply from the WAN address side that maps the LAN IP address to the WAN's MAC address.


Netgear RP114, and possibly other versions and

demonstrated | temporarily | interfaces | attackers | interface | versions | external | possibly | internal | service | between | routing | devices | another | Netgear | system | allows | denial | attack | remote | stops | using | RP114 | other | flood | cause | which | nmap | one | via | SYN |

Netgear RP114, and possibly other versions and devices, allows remote attackers to cause a denial of service via a SYN flood attack between one system on the internal interface and another on the external interface, which temporarily stops routing between the interfaces, as demonstrated using nmap.


NETGEAR WGT624 Wireless DSL router has a defaul

super_username | configuration | super_passwd | "Gearguy" | attackers | "Geardog" | Wireless | NETGEAR | default | account | allows | remote | router | WGT624 | modify | which | has | DSL |

NETGEAR WGT624 Wireless DSL router has a default account of super_username "Gearguy" and super_passwd "Geardog", which allows remote attackers to modify the configuration. NOTE: a followup post has suggested that this might not occur with all WGT624 routers.


The backup configuration option in NETGEAR WGT6

configuration | information | privileges | sensitive | cleartext | passwords | attackers | Firewall | Wireless | NETGEAR | remote | obtain | option | backup | stores | Router | WGT624 | allows | which | gain |

The backup configuration option in NETGEAR WGT624 Wireless Firewall Router stores sensitive information in cleartext, which allows remote attackers to obtain passwords and gain privileges.


Netgear FVG318 running firmware 1.0.40 allows r

firmware | running | Netgear | FVG318 |

Netgear FVG318 running firmware 1.0.40 allows remote attackers to cause a denial of service (router reset) via TCP packets with bad checksums.


NETGEAR DG834GT Wireless ADSL router running fi

Wireless | firmware | running | NETGEAR | DG834GT | router | ADSL |

NETGEAR DG834GT Wireless ADSL router running firmware 1.01.28 allows attackers to cause a denial of service (device hang) via a long string in the username field in the login window.


Stack-based buffer overflow in WG111v2.SYS in N

Stack-based | WG111v2SYS | wireless | overflow | adapter | WG111v2 | NetGear | buffer |

Stack-based buffer overflow in WG111v2.SYS in NetGear WG111v2 wireless adapter (USB) allows remote attackers to execute arbitrary code via a long 802.11 beacon request.


Heap-based buffer overflow in the wireless driv

Heap-based | wireless | overflow | driver | buffer |

Heap-based buffer overflow in the wireless driver (WG311ND5.SYS) 2.3.1.10 for NetGear WG311v1 wireless adapter allows remote attackers to execute arbitrary code via an 802.11 management frame with a long SSID.


NETGEAR (formerly Infrant) ReadyNAS RAIDiator b

NETGEAR |

NETGEAR (formerly Infrant) ReadyNAS RAIDiator before 4.00b2-p2-T1 beta creates a default SSH root password derived from the hardware serial number, which makes it easier for remote attackers to guess the password and obtain login access.


Software vulnerabilities results 1 to 20 of 23     
Page: 12