漏洞类别:CGI
漏洞等级: 
漏洞信息
Netgear DGN2200, DGND3700 and WNDR4500 series routers are wireless modem routers.
Netgear DGN2200, DGND3700 and WNDR4500 series routers are exposed to a sensitive information disclosure vulnerability.
Affected Versions:
Firmware version DGN2200-V1.0.0.50_7.0.50 running on Netgear DGN2200
Firmware version DGND3700-V1.0.0.17_1.0.17 running on Netgear DGND3700
Firmware version V1.0.1.40_1.0.68 running on Netgear WNDR4500
Prior versions may also be affected.
漏洞危害
An unauthenticated, remote attacker could exploit this vulnerability to obtain sensitive information such as administrator password or 2.4GHz and 5GHz Wireless Network Name (SSID) and Network Key (Password) in clear text.
解决方案
Netgear has released firmware versions 1.0.0.52 for DGN2200 and 1.0.0.28 and DGND3700 to address this issue.
WNDR4500v1 has reached End of Life (Service Unavailable) so vendor won't be releasing any fix for this issue.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论