| Titel | Netgear R7000 — Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router V1.0.11.136_10.2.120 Denial of Service |
|---|
| Beschreibung | # DoS Attack in Netgear-R7000 Router
## Overview
* Type: Dos Attack
* Supplier: Netgear (https://www.netgear.com/)
* Victim URL: http://192.168.1.1/USB_adv_add.htm (hidden page)
* Product: R7000 — Nighthawk AC1900 Smart WiFi Dual Band Gigabit Router
* Affect version: V1.0.11.136_10.2.120
* Firmware download: https://www.downloads.netgear.com/files/GDC/R7000/R7000-V1.0.11.136_10.2.120.zip
## Description
The vulnerability casuse the device's service down remotely on the device by crafting a request to the web where there should be no context to access.
## Steps to Reproduce
I have put the PoC (exp.py) in the attachments. The parameters are as below:
1. username, password: normal user (default: admin, password).
2. device_web_ip: web IP address of the target device.
|
|---|
| Quelle | ⚠️ https://github.com/leetsun/IoT-Vuls/tree/main/Netgear-R7000/1 |
|---|
| Benutzer | leetmoon (UID 42673) |
|---|
| Einreichung | 02.09.2024 09:32 (vor 2 Jahren) |
|---|
| Moderieren | 11.09.2024 13:31 (9 days later) |
|---|
| Status | Duplikat |
|---|
| VulDB Eintrag | 189142 [Netgear RBS850 Denial of Service] |
|---|
| Punkte | 0 |
|---|