Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv2

CVE-2009-2257

Published: 30/06/2009 Updated: 10/10/2018
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 785
Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N
Subscribe to Netgear

Vulnerability Summary

The administrative web interface on the Netgear DG632 with firmware 3.4.0_ap allows remote malicious users to bypass authentication via a direct request to (1) gateway/commands/saveconfig.html, and (2) stattbl.htm, (3) modemmenu.htm, (4) onload.htm, (5) form.css, (6) utility.js, and possibly (7) indextop.htm in html/.

Vulnerable Product Search on Vulmon Subscribe to Product

netgear dg632 3.4.0_ap

Exploits

Exploit DB: NETGEAR DG632 Router - Authentication Bypass
Product Name: Netgear DG632 Router Vendor: wwwnetgearcom Date: 15 June, 2009 Author: tom@tomneavescouk < tom@tomneavescouk > Original URL: wwwtomneavescouk/Netgear_DG632_Authentication_Bypasstxt Discovered: 18 November, 2006 Disclosed: 15 June, 2009 I DESCRIPTION The Netgear DG632 router has a web interface which ru ...

References

CWE-287http://www.tomneaves.co.uk/Netgear_DG632_Authentication_Bypass.txthttp://securitytracker.com/id?1022404http://www.exploit-db.com/exploits/8963http://www.securityfocus.com/archive/1/504312/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/8963/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2024-35863CVE-2024-35910man-in-the-middleCVE-2024-35912CVE-2024-25742LFICVE-2024-32002CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook