Network Security, Vulnerability Management

Netgear router issues could allow auth bypass, info disclosure

Researcher Peter Adkins has disclosed details on an authentication bypass and information disclosure vulnerability affecting several Netgear wireless routers.

Last week, he revealed to the Full Disclosure mailing list that “A number of Netgear WNDR devices contain an embedded SOAP service that is seemingly for use with the Netgear Genie application.” Due to the way the SOAP service is implemented, affected devices are vulnerable to being “interrogated and hijacked with as little as a well placed HTTP query,” he explained.

SOAP allows for viewing and setting of certain router parameters, including WLAN credentials and SSIDs (as well as guest credentials and SSIDs), connected clients, and parental control settings, Adkins wrote, noting that security issues “can be leveraged ‘externally' over the internet, but require devices to have remote/WAN management enabled.”

Adkins said he reported the security hole, which remains open, to Netgear last month.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.