Skip to content

Instantly share code, notes, and snippets.

@dliv

dliv/netgear-router-rce.md

Last active December 15, 2016 02:42
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save dliv/4da33ca533c15277436c60ec9a9a595f to your computer and use it in GitHub Desktop.
Save dliv/4da33ca533c15277436c60ec9a9a595f to your computer and use it in GitHub Desktop.
Download ZIP
Netgear Router RCE
Raw
netgear-router-rce.md

Netgear Router RCE

Issue

http://arstechnica.com/security/2016/12/unpatched-bug-allows-hackers-to-seize-control-of-netgear-routers/

Temp Fix

  1. Fix: Visit http://<router-ip>/cgi-bin/;killall$IFS'httpd'
  2. Verify: Visit http://<router-ip>/cgi-bin/;uname$IFS-a

If (2) shows anything but a blank page, then (1) didn't work. (1) is undone on router boot / restart.

Permanent Fix

Firmware is being patched. Beta (as of 2016-12-14) patch exists for some routers.

http://kb.netgear.com/000036386/CVE-2016-582384?cid=wmt_netgear_organic

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment