CVE-2017-6334
CVE-2017-6334
In short
A web interface on NETGEAR DGN2200 routers allows authenticated users to run arbitrary commands on the device by injecting shell commands through a DNS lookup form. An attacker with router access can take complete control of the device.
Technical detail
CWE-78 OS Command Injection in dnslookup.cgi POST parameter 'host_name' allows authenticated remote code execution via unvalidated shell metacharacters. Requires prior authentication to the router web interface; successful exploitation grants arbitrary command execution with router privileges.
Summary generated and translated by AI from the official description.
dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the host_name field of an HTTP POST request, a different vulnerability than CVE-2017-6077.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 6
cve_referencewww.exploit-db.com/exploits/41459/unverifiedcve_referencewww.exploit-db.com/exploits/41472/unverifiedcve_referencewww.exploit-db.com/exploits/42257/unverifiedexploitdbwww.exploit-db.com/exploits/42257unverifiedexploitdbwww.exploit-db.com/exploits/41459unverifiedexploitdbwww.exploit-db.com/exploits/41472unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →