virus logo Intrusion Prevention

NETGEAR.DGN1000.CGI.Unauthenticated.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a remote Code Execution vulnerability in NetGear DGN series routers.
The vulnerability is due to an error in the application when handling a crafted HTTP request. It may allow remote attackers to execute arbitrary code on vulnerable systems via a crafted HTTP request.

description-logoOutbreak Alert

FortiGuard Labs has observed various router vulnerabilities being exploited in the wild to distribute malware such as MooBot Malware, Lucifer Malware, BotenaGo Botnet, Zerobot Malware, Enemybot Malware.

View the full Outbreak Alert Report

affected-products-logoAffected Products

Netgear DGN1000 firmware version 1.1.00.48 and prior
Netgear DGN2200 v1

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply latest patch from the Vendor.
https://www.netgear.com/support/download/

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://seclists.org/bugtraq/2013/Jun/8 25978
ID 44738
Created Oct 27, 2017
Updated Nov 01, 2017
Outbreak Alert Router Malware Attack
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Linux
Affected App CGI_app