Details of VAR-201205-0445

ID

VAR-201205-0445

TITLE

NETGEAR WNDRMAC Wireless Router Multiple Information Disclosure Vulnerabilities

Trust: 0.9

sources: BID: 53490 // CNNVD: CNNVD-201210-482

DESCRIPTION

The NETGEAR WNDRMAC Wireless Router is a wireless router. Check the source code of the NETGEAR WNDRMAC Wireless Router page for sensitive information. If the password recovery operation is successfully completed, the attacker is allowed to log in to the device. NETGEAR WNDRMAC is prone to multiple information-disclosure vulnerabilities. An attacker can exploit these issues to disclose sensitive information; this may aid in further attacks. NETGEAR WNDRMAC version 1.0.0.22 and prior are vulnerable

Trust: 0.81

sources: CNVD: CNVD-2012-2558 // BID: 53490

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2012-2558

AFFECTED PRODUCTS

vendor:

netgear

model:

wndrmac

scope:

version:

1.0.0.22

Trust: 0.9

sources: CNVD: CNVD-2012-2558 // BID: 53490

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201210-482

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201210-482

EXTERNAL IDS

db:	BID	id:	53490	Trust: 1.5
db:	CNVD	id:	CNVD-2012-2558	Trust: 0.6
db:	CNNVD	id:	CNNVD-201210-482	Trust: 0.6

sources: CNVD: CNVD-2012-2558 // BID: 53490 // CNNVD: CNNVD-201210-482

REFERENCES

url:	http://www.senseofsecurity.com.au/advisories/sos-12-005.pdf	Trust: 0.9
url:	http://www.securityfocus.com/bid/53490	Trust: 0.6
url:	http://www.netgear.com/	Trust: 0.3
url:	http://store.netgear.com/store/netgear/en_us/pd/productid.234904600/categoryid.43976600	Trust: 0.3

sources: CNVD: CNVD-2012-2558 // BID: 53490 // CNNVD: CNNVD-201210-482

CREDITS

Nathaniel Carew

Trust: 0.9

sources: BID: 53490 // CNNVD: CNNVD-201210-482

SOURCES

db:	CNVD	id:	CNVD-2012-2558
db:	BID	id:	53490
db:	CNNVD	id:	CNNVD-201210-482

LAST UPDATE DATE

2022-05-17T02:09:09.818000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2012-2558	date:	2012-05-17T00:00:00
db:	BID	id:	53490	date:	2012-05-13T00:00:00
db:	CNNVD	id:	CNNVD-201210-482	date:	2012-10-22T00:00:00

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2012-2558	date:	2012-05-17T00:00:00
db:	BID	id:	53490	date:	2012-05-13T00:00:00
db:	CNNVD	id:	CNNVD-201210-482	date:	2012-05-13T00:00:00