Lucene search
MitreCVELIST:CVE-2017-6366HistoryMar 15, 2017 - 2:00 p.m.
CVE-2017-6366
2017-03-1514:00:00
mitre
www.cve.org
Cross-site request forgery (CSRF) vulnerability in NETGEAR DGN2200 routers with firmware 10.0.0.20 through 10.0.0.50 allows remote attackers to hijack the authentication of users for requests that perform DNS lookups via the host_name parameter to dnslookup.cgi. NOTE: this issue can be combined with CVE-2017-6334 to execute arbitrary code remotely.
References
Related
cve
cve
CVE-2017-6366
2017-03-15 14:59:00
CVE-2017-6334
2017-03-06 02:59:00
nvd
nvd
CVE-2017-6366
2017-03-15 14:59:00
CVE-2017-6334
2017-03-06 02:59:00
prion
prion
Cross site request forgery (csrf)
2017-03-15 14:59:00
Cross site request forgery (csrf)
2017-03-06 02:59:00
exploitpack
exploitpack
NETGEAR DGN2200v1v2v3v4 - Cross-Site Request Forgery
2017-02-28 00:00:00
exploitdb
exploitdb
Netgear DGN2200v1/v2/v3/v4 - Cross-Site Request Forgery
2017-02-28 00:00:00
zdt
zdt
Netgear DGN2200 - dnslookup.cgi Command Injection Exploit
2017-06-26 00:00:00
NETGEAR DGN2200 v1/v2/v3/v4 - dnslookup.cgi Remote Command Execution Exploit
2017-02-27 00:00:00
packetstorm
packetstorm
Netgear DGN2200 dnslookup.cgi Command Injection
2017-06-24 00:00:00
Netgear DGN2201 v1/v2/v3/v4 dnslookup.cgi Remote Command Execution
2017-02-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Netgear DGN2200 dnslookup.cgi Command Injection (CVE-2017-6334)
2017-07-26 00:00:00
cisa_kev
cisa_kev
NETGEAR DGN2200 Devices OS Command Injection Vulnerability
2022-03-25 00:00:00
openvas
openvas
NETGEAR DGN2200 CVE-2017-6334 RCE Vulnerability
2017-06-28 00:00:00
cvelist
cvelist
CVE-2017-6334
2017-03-06 02:00:00
attackerkb
attackerkb
CVE-2017-6334
2017-03-06 00:00:00
rapid7community
rapid7community
Metasploit Wrapup
2017-06-30 19:09:11