Stack Overflow Vulnerability in Netgear Routers
CVE-2024-52013

Currently unrated

Key Information:

Vendor: Netgear
Status: Various Netgear Routers
Vendor: CVE Published:; 5 November 2024

Summary

A vulnerability exists in multiple Netgear routers where a stack overflow can occur through the pptp_user_ip parameter in the wiz_pptp.cgi file. By sending a specially crafted POST request, an attacker can exploit this vulnerability, potentially resulting in a Denial of Service (DoS). Affected models include the R8500, XR300, R7000P, and R6400, highlighting the need for immediate awareness and action from users to safeguard their devices.

References

https://www.netgear.com/about/security/

https://github.com/wudipjq/my_vuln/blob/main/Netgear4/vul...

Timeline

Vulnerability published
Nov 5, 2024
Vulnerability Reserved
Nov 4, 2024