Security flaw found in Netgear routers2016-12-12 03:20 by Daniela
Tags: Netgear, router, R6400, R7000
The United States Computer Emergency Readiness Team (US-CERT), has identified a critical security flaw in some models of routers created by Netgear. The routers in question are R6400 and R7000. However, it is suspected that other models of Netgear routers might also be vulnerable.
According to the findings of CERT, the routers are vulnerable to a random command injection flaw. It is rated as a serious and severe one because if cyber-criminals are able to exploit it then can easily acquire root privileges and run arbitrary commands. Even worse, the code through which this vulnerability can be exploited has been released online. This would allow anyone to conduct attacks and get root privileges.
"Exploiting this vulnerability is trivial," CERT said. "Users who have the option of doing so should strongly consider discontinuing use of affected devices until a fix is made available. The CERT/CC is currently unaware of a practical solution to this problem and recommends the following workaround," the organization added.
It's nor clear yet how many users may be affected by the flaw.
Read more -here-