Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 30/06/2009 Updated: 10/10/2018

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 785

Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N

Directory traversal vulnerability in cgi-bin/webcm in the administrative web interface on the Netgear DG632 with firmware 3.4.0_ap allows remote malicious users to list arbitrary directories via a .. (dot dot) in the nextpage parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
netgear dg632_firmware 3.4.0_ap
netgear dg632 -

Product Name: Netgear DG632 Router Vendor: wwwnetgearcom Date: 15 June, 2009 Author: tom@tomneavescouk < tom@tomneavescouk > Original URL: wwwtomneavescouk/Netgear_DG632_Authentication_Bypasstxt Discovered: 18 November, 2006 Disclosed: 15 June, 2009 I DESCRIPTION The Netgear DG632 router has a web interface which ru ...

CWE-22 http://securitytracker.com/id?1022404 http://www.tomneaves.co.uk/Netgear_DG632_Authentication_Bypass.txt http://www.exploit-db.com/exploits/8963 http://www.securityfocus.com/archive/1/504312/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/8963/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-2258

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect