Authentication Bypass in NetGear ProSafe WNAP210 Firmware
CVE-2011-1674

Currently unrated

Key Information:

Vendor: Netgear
Status: Prosafe Wnap210; Prosafe Wnap210 Firmware
Vendor: CVE Published:; 10 April 2011

Summary

The NetGear ProSafe WNAP210 with firmware version 2.0.12 has a vulnerability that allows remote attackers to bypass authentication mechanisms. By sending requests to the recreate.php script followed by accessing index.php, attackers can gain unauthorized access to the device's configuration settings. This can lead to unauthorized changes to network configurations, posing significant security risks. Users are advised to update to the latest firmware to mitigate this issue.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/66723

vdb-entryx_refsource_XF

http://www.kb.cert.org/vuls/id/644812

third-party-advisoryx_refsource_CERT-VN

http://www.vupen.com/english/advisories/2011/0884

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Apr 10, 2011
Vulnerability Reserved
Apr 9, 2011