Remote Code Execution Vulnerability in NetGear ProSafe WNAP210
CVE-2011-1673

Currently unrated

Key Information:

Vendor: Netgear
Status: Prosafe Wnap210; Prosafe Wnap210 Firmware
Vendor: CVE Published:; 10 April 2011

Summary

The NetGear ProSafe WNAP210 has a vulnerability in its BackupConfig.php script that allows remote attackers to access sensitive configuration files. This exposure can lead to the disclosure of the administrator's password, thereby compromising the security of the affected device. The issue arises from insufficient access controls on the configuration file, enabling unauthorized users to retrieve critical information that should be protected.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/66817

vdb-entryx_refsource_XF

http://www.kb.cert.org/vuls/id/644812

third-party-advisoryx_refsource_CERT-VN

http://www.vupen.com/english/advisories/2011/0884

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Apr 10, 2011
Vulnerability Reserved
Apr 9, 2011