Certain NETGEAR devices are affected by command injection by an unauthenticated attacker via the vulnerable /sqfs/lib/libsal.so.0.0 library used by a CGI application, as demonstrated by setup.cgi?token=';$HTTP_USER_AGENT;' with an OS command in the User-Agent field. This affects GC108P prior to 1.0.7.3, GC108PP prior to 1.0.7.3, GS108Tv3 prior to 7.0.6.3, GS110TPPv1 prior to 7.0.6.3, GS110TPv3 prior to 7.0.6.3, GS110TUPv1 prior to 1.0.4.3, GS710TUPv1 prior to 1.0.4.3, GS716TP prior to 1.0.2.3, GS716TPP prior to 1.0.2.3, GS724TPPv1 prior to 2.0.4.3, GS724TPv2 prior to 2.0.4.3, GS728TPPv2 prior to 6.0.6.3, GS728TPv2 prior to 6.0.6.3, GS752TPPv1 prior to 6.0.6.3, GS752TPv2 prior to 6.0.6.3, MS510TXM prior to 1.0.2.3, and MS510TXUP prior to 1.0.2.3.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netgear gc108p firmware |
||
netgear gc108pp firmware |
||
netgear gs108t firmware |
||
netgear gs110tpp firmware |
||
netgear gs110tp firmware |
||
netgear gs110tup firmware |
||
netgear gs710tup firmware |
||
netgear gs716tp firmware |
||
netgear gs716tpp firmware |
||
netgear gs724tpp firmware |
||
netgear gs724tp firmware |
||
netgear gs728tpp firmware |
||
netgear gs728tp firmware |
||
netgear gs752tpp firmware |
||
netgear gs752tp firmware |
||
netgear ms510txm firmware |
||
netgear ms510txup firmware |