Sunday December 11, 2016

Easily Exploited Netgear Router Flaw Discovered

This affects the R6400, R7000, R8000, and possibly other models. The vulnerability can be exploited remotely and would grant an attacker full access to the router. Netgear was supposedly contacted about this four months ago, but the latest firmware does not fix the issue.

At least two Netgear routers, the R6400 and R7000, are vulnerable to a command injection flaw that is easy to exploit and could lead to the total takeover of the routers. آ…vulnerable routers can be infected by loading a malicious web page or advertisement. The technique, abusing an HTML IMG tag to issue a command to the router, has been seen many times before. آ…The flaw allows for many commands and total takeover of the router.