Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




3623 posts

Uber Geek
+1 received by user: 2106

Trusted
Lifetime subscriber

Topic # 206153 12-Dec-2016 08:49
One person supports this post
Send private message

There is an unpatched vulnerability in these that allows remote command injection, and public exploit code for said vulnerability. 

 

Full details at https://www.kb.cert.org/vuls/id/582384

 

Confirmed to be an issue on the R6400/R7000 models, but as per the CERT entry at least one firmware revision of the R8000 is vulnerable according to community reports and other Netgear routers may be vulnerable.

 

 





Information wants to be free. The Net interprets censorship as damage and routes around it.


Create new topic
521 posts

Ultimate Geek
+1 received by user: 282


  Reply # 1686346 12-Dec-2016 09:12
One person supports this post
Send private message

 

By convincing a user to visit a specially crafted web site, a remote attacker may execute arbitrary commands with root privileges on affected routers. A LAN-based attacker may do the same by issuing a direct request, e.g. by visiting: http:///cgi-bin/;COMMAND

 

 

Wow. That has to be one of the biggest security holes out there.

 

If you're running stock firmware, may I suggest now would be a good time to try out some third-party alternatives? AdvancedTomato had an uptime of about 200 days on my R7000 until a power cut the other night.


'That VDSL Cat'
9686 posts

Uber Geek
+1 received by user: 2247

Trusted
Spark
Subscriber

  Reply # 1686349 12-Dec-2016 09:19
Send private message

Scary flaw to have in there in this day and ages.

 

 

 

Ammazed that something so simple still stands in routers.. surely we learnt from back in the day when this first came out?





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.


 
 
 
 


Mr Snotty
8423 posts

Uber Geek
+1 received by user: 4350

Moderator
Trusted
Lifetime subscriber

  Reply # 1686357 12-Dec-2016 09:47
2 people support this post
Send private message

With most of these routers flash with Advanced Tomato and be done with it. This is bad...

 

The likleyhood of an attack is slim however as this has to be exploited client side. With the Marai botnet doing its rounds it wouldn't surprise me if it was able to send phishing emails out hoping to get more victims. There is already this same exploit for some TP-LINK and DLINK routers with unpatched firmware (this is going back a few years).





'That VDSL Cat'
9686 posts

Uber Geek
+1 received by user: 2247

Trusted
Spark
Subscriber

  Reply # 1686360 12-Dec-2016 09:50
Send private message

michaelmurfy:

 

With most of these routers flash with Advanced Tomato and be done with it. This is bad...

 

The likleyhood of an attack is slim however as this has to be exploited client side. With the Marai botnet doing its rounds it wouldn't surprise me if it was able to send phishing emails out hoping to get more victims. There is already this same exploit for some TP-LINK and DLINK routers with unpatched firmware (this is going back a few years).

 

 

 

 

as its only over http, it's easily exploited over a iframe or js remember..





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.


BDFL - Memuneh
62670 posts

Uber Geek
+1 received by user: 13352

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1686396 12-Dec-2016 10:34
3 people support this post
Send private message


3623 posts

Uber Geek
+1 received by user: 2106

Trusted
Lifetime subscriber

  Reply # 1686467 12-Dec-2016 11:24
Send private message

I'm not sure how many people here will be running stock firmware, but plenty of not so technical people who brought them from Noel Leemings etc will be. 





Information wants to be free. The Net interprets censorship as damage and routes around it.


Banana?
4615 posts

Uber Geek
+1 received by user: 1141

Subscriber

  Reply # 1686494 12-Dec-2016 12:23
Send private message

I'm running stock on an R7000.

 

No chance I will run anything from a website I don't know. Will look at putting the Tomato on it this weekend.


191 posts

Master Geek
+1 received by user: 14


  Reply # 1686633 12-Dec-2016 18:49
Send private message

trig42:

 

I'm running stock on an R7000.

 

No chance I will run anything from a website I don't know. Will look at putting the Tomato on it this weekend.

 

 

Maybe using a non-standard IP address for the router (and dhcp server) could offer some interim defense - see details here - http://routersecurity.org/ipaddresses.php

 

 


191 posts

Master Geek
+1 received by user: 14


  Reply # 1686642 12-Dec-2016 18:54
Send private message

Computerworld has a detailed article (and how to test your router's vulnerability) here - http://www.computerworld.com/article/3148680/networking/easily-exploited-netgear-router-flaw-discovered.html

 

 


191 posts

Master Geek
+1 received by user: 14


  Reply # 1686645 12-Dec-2016 18:57
Send private message
1073 posts

Uber Geek
+1 received by user: 240


  Reply # 1687840 14-Dec-2016 18:56
Send private message

allio:

 

 

By convincing a user to visit a specially crafted web site, a remote attacker may execute arbitrary commands with root privileges on affected routers. A LAN-based attacker may do the same by issuing a direct request, e.g. by visiting: http:///cgi-bin/;COMMAND

 

 

Wow. That has to be one of the biggest security holes out there.

 

If you're running stock firmware, may I suggest now would be a good time to try out some third-party alternatives? AdvancedTomato had an uptime of about 200 days on my R7000 until a power cut the other night.

 

 

 

 

Interesting, I've never put 3rd party firmware on before, will give this a try thanks.

 

 

 

Actually after seeing people complain about the WiFi range and speed being worse on this, I think I'll just stick with stock and just install the beta patch. :D


1073 posts

Uber Geek
+1 received by user: 240


  Reply # 1692078 19-Dec-2016 10:41
Send private message

There are now a few production firmware fixes available for anyone interested: Linky


191 posts

Master Geek
+1 received by user: 14


  Reply # 1693862 22-Dec-2016 14:39
Send private message

Updated all my R7000s (Router, WiFi Bridge & AP) - so far so good!

 

(WiFi on FibreX Max)

 


1984 posts

Uber Geek
+1 received by user: 133

Trusted

  Reply # 1694950 25-Dec-2016 21:04
One person supports this post
Send private message

And here I thought it was a feature...





Qualified in business, certified in fibre, stuck in copper, have to keep going  ^_^

191 posts

Master Geek
+1 received by user: 14


  Reply # 1701131 10-Jan-2017 21:15
Send private message

Netgear has partnered with Bugcrowd to offer between $150 and $15,000 to researchers who find security flaws in its hardware, mobile apps, and APIs etc - see full article here http://www.tomshardware.com/news/netgear-bugcrowd-bug-bounty-program,33342.html

 

Is this initiative too little too late or a step in the right direction?


Create new topic


Donate via Givealittle


Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Amazon introduces new Kindle with adjustable front light
Posted 21-Mar-2019 20:14


A call from the companies providing internet access for the great majority of New Zealanders, to the companies with the greatest influence over social media content
Posted 19-Mar-2019 15:21


Two e-scooter companies selected for Wellington trial
Posted 15-Mar-2019 17:33


GeForce GTX 1660 available now
Posted 15-Mar-2019 08:47


Artificial Intelligence to double the rate of innovation in New Zealand by 2021
Posted 13-Mar-2019 14:47


LG demonstrates smart home concepts at LG InnoFest
Posted 13-Mar-2019 14:45


New Zealanders buying more expensive smartphones
Posted 11-Mar-2019 09:52


2degrees Offers Amazon Prime Video to Broadband Customers
Posted 8-Mar-2019 14:10


D-Link ANZ launches D-Fend AC2600 Wi-Fi Router Protected by McAfee
Posted 7-Mar-2019 11:09


Slingshot commissions celebrities to design new modems
Posted 5-Mar-2019 08:58


Symantec Annual Threat Report reveals more ambitious, destructive and stealthy attacks
Posted 28-Feb-2019 10:14


FUJIFILM launches high performing X-T30
Posted 28-Feb-2019 09:40


Netflix is killing content piracy says research
Posted 28-Feb-2019 09:33


Trend Micro finds shifting threats require kiwis to rethink security priorities
Posted 28-Feb-2019 09:27


Mainfreight uses Spark IoT Asset Tracking service
Posted 28-Feb-2019 09:25



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.