Buffer Overflow Vulnerability in NETGEAR Routers
CVE-2021-27239

8.8HIGH

Key Information:

Vendor: Netgear
Status: Multiple Routers
Vendor: CVE Published:; 29 March 2021

Summary

A stack-based buffer overflow vulnerability exists in the upnpd service of NETGEAR R6400 and R6700 routers running firmware version 1.0.4.98. This issue allows network-adjacent attackers to execute arbitrary code without prior authentication by sending specially crafted SSDP messages that exploit the flaw in the handling of the MX header field. If successful, an attacker could gain root-level access, potentially compromising the router's security and connected devices.

Affected Version(s)

Multiple Routers firmware version 1.0.4.98

References

https://www.zerodayinitiative.com/advisories/ZDI-21-206/

x_refsource_MISC

https://kb.netgear.com/000062820/Security-Advisory-for-St...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 29, 2021
Vulnerability Reserved
Feb 16, 2021

Credit

Anonymous