Stack-based buffer overflow in NETGEAR Routers and WiFi Systems



Published: 2022-06-30
Risk High
Patch available YES
Number of vulnerabilities 1
CVE-ID N/A
CWE-ID CWE-121
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		RAXE500
Hardware solutions / Routers & switches, VoIP, GSM, etc

RAXE450
Hardware solutions / Routers & switches, VoIP, GSM, etc

MK83
Hardware solutions / Routers & switches, VoIP, GSM, etc

MK62
Hardware solutions / Routers & switches, VoIP, GSM, etc

R6700v3
Hardware solutions / Routers & switches, VoIP, GSM, etc

DC112A
Hardware solutions / Routers & switches, VoIP, GSM, etc

MR60
Hardware solutions / Routers & switches, VoIP, GSM, etc

MR80
Hardware solutions / Routers & switches, VoIP, GSM, etc

MS60
Hardware solutions / Routers & switches, VoIP, GSM, etc

MS80
Hardware solutions / Routers & switches, VoIP, GSM, etc

XR1000
Hardware solutions / Routers for home users

R6400v2
Hardware solutions / Routers for home users

R7850
Hardware solutions / Routers for home users

R7000P
Hardware solutions / Routers for home users

R6900P
Hardware solutions / Routers for home users

R8000
Hardware solutions / Routers for home users

RS400
Hardware solutions / Routers for home users

XR300
Hardware solutions / Routers for home users

R6400
Hardware solutions / Routers for home users

WNDR3400v3
Hardware solutions / Routers for home users

R7000
Hardware solutions / Routers for home users

Vendor

Security Bulletin

This security bulletin contains one high risk vulnerability.

1) Stack-based buffer overflow

EUVDB-ID: #VU64814

Risk: High

CVSSv3.1: 7.1 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: N/A

CWE-ID: CWE-121 - Stack-based buffer overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error. A remote unauthenticated attacker can trigger stack-based buffer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

RAXE500: before 1.0.8.70

RAXE450: before 1.0.8.70

XR1000: before 1.0.0.64

MK83: before 1.1.6.14

MK62: before 1.1.6.122

R6400v2: before 1.0.4.122

R7850: before 1.0.5.76

R6700v3: before 1.0.4.122

R7000P: before 1.3.3.148

R6900P: before 1.3.3.148

R8000: before 1.0.4.76

RS400: before 1.5.1.86

XR300: before 1.0.3.68

DC112A: before 1.0.0.64

R6400: before 1.0.1.76

WNDR3400v3: before 1.0.1.44

R7000: before 1.0.11.130

MR60: before 1.1.6.122

MR80: before 1.1.6.14

MS60: before 1.1.6.122

MS80: before 1.1.6.14

External links

http://kb.netgear.com/000065043/Security-Advisory-for-Post-Authentication-Stack-Overflow-on-Some-Routers-and-WiFi-Systems-PSV-2021-0187


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###