Authentication Bypass and Remote Code Execution Vulnerability in NETGEAR WNR2000 Routers (PSV-2016-0261)

Authentication Bypass and Remote Code Execution Vulnerability in NETGEAR WNR2000 Routers (PSV-2016-0261)

CVE-2017-6862 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

NETGEAR WNR2000v3 devices before 1.1.2.14, WNR2000v4 devices before 1.0.0.66, and WNR2000v5 devices before 1.0.0.42 allow authentication bypass and remote code execution via a buffer overflow that uses a parameter in the administration webapp. The NETGEAR ID is PSV-2016-0261.

Learn more about our Web App Pen Testing.