CVE-2021-34982: NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute…

high8.8CVSS 3.0

AVAACLPRNUINSUCHIHAH

NETGEAR Multiple Routers httpd Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple NETGEAR routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by default. When parsing the strings file, the process does not properly validate the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. . Was ZDI-CAN-13709.

Affected

53 ranges· showing 25

Vendor	Product	Version range	Fixed in
netgear	d6220_firmware	< 1.0.0.76	1.0.0.76
netgear	d6400_firmware	< 1.0.0.108	1.0.0.108
netgear	d7000v2_firmware	< 1.0.0.76	1.0.0.76
netgear	dc112a_firmware	< 1.0.0.62	1.0.0.62
netgear	dgn2200v4_firmware	< 1.0.0.126	1.0.0.126
netgear	ex3700_firmware	< 1.0.0.94	1.0.0.94
netgear	ex3800_firmware	< 1.0.0.94	1.0.0.94
netgear	ex6120_firmware	< 1.0.0.66	1.0.0.66
netgear	ex6130_firmware	< 1.0.0.46	1.0.0.46
netgear	ex7000_firmware	< 1.0.1.106	1.0.1.106
netgear	ex7500_firmware	< 1.0.1.76	1.0.1.76
netgear	lax20_firmware	< 1.1.6.30	1.1.6.30
netgear	mr60_firmware	< 1.1.6.122	1.1.6.122
netgear	mr80_firmware	< 1.1.6.10	1.1.6.10
netgear	ms60_firmware	< 1.1.6.122	1.1.6.122
netgear	ms80_firmware	< 1.1.6.10	1.1.6.10
netgear	multiple_routers	—	—
netgear	r6400_firmware	< 1.0.1.76	1.0.1.76
netgear	r6400v2_firmware	< 1.0.4.120	1.0.4.120
netgear	r6700v3_firmware	< 1.0.4.120	1.0.4.120
netgear	r6900p_firmware	< 1.3.3.148	1.3.3.148
netgear	r7000_firmware	< 1.0.11.128	1.0.11.128
netgear	r7000p_firmware	< 1.3.3.148	1.3.3.148
netgear	r7100lg_firmware	< 1.0.0.72	1.0.0.72
netgear	r7850_firmware	< 1.0.5.76	1.0.5.76