Published: 06/03/2017 Updated: 03/10/2019

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 915

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

dnslookup.cgi on NETGEAR DGN2200 devices with firmware up to and including 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the host_name field of an HTTP POST request, a different vulnerability than CVE-2017-6077.

Vulnerable Product	Search on Vulmon	Subscribe to Product
netgear dgn2200_series_firmware

#!/usr/bin/python #Provides access to default user account, privileges can be easily elevated by using either: # - a kernel exploit (ex memodipper was tested and it worked) # - by executing /bin/bd (suid backdoor present on SOME but not all versions) # - by manipulating the httpd config files to trick the root user into executing your code (separ ...

## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## require 'net/http' require "base64" class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient def initialize(info = {}) super(update_info(info, ...

# Exploit Title: NETGEAR Firmware DGN2200v1/v2/v3/v4 CSRF which leads to RCE through CVE-2017-6334 # Date: 2017-02-28 # Exploit Author: SivertPL # Vendor Homepage: netgearcom/ # Software Link: wwwdownloadsnetgearcom/files/GDC/DGN2200/DGN2200%20Firmware%20Version%2010020%20-%20Initial%20Release%20(NA)zip # Version: 100020 (i ...

CWE-78 https://www.exploit-db.com/exploits/41459/http://www.securityfocus.com/bid/96463 https://www.exploit-db.com/exploits/42257/https://www.exploit-db.com/exploits/41472/https://nvd.nist.gov https://www.exploit-db.com/exploits/41459/

CVE-2017-6334

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect