"Netgear Zero-Day Allows Full Takeover of Dozens of Router Models"
Researchers have discovered an unpatched, zero-day vulnerability in firmware for Netgear routers. The flaw is a memory-safety issue present in the firmware's httpd web server, and it allows attackers to bypass authentication on affected installations of Netgear routers. Researchers discovered the flaw initially in the Netgear R7000 router series, but through more research identified 79 different Netgear devices and 759 firmware images that included a vulnerable copy of the web server. This vulnerability affects firmwares as early as 2007.
Threatpost reports: "Netgear Zero-Day Allows Full Takeover of Dozens of Router Models"
Submitted by Anonymous
on