Lucene search
PRIOn knowledge basePRION:CVE-2017-6334HistoryMar 06, 2017 - 2:59 a.m.
Cross site request forgery (csrf)
2017-03-0602:59:00
PRIOn knowledge base
www.prio-n.com
14
dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the host_name field of an HTTP POST request, a different vulnerability than CVE-2017-6077.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dgn2200_series_firmware | le | 10.0.0.50 |
Related
cve
cve
cvelist
cvelist
nvd
nvd
attackerkb
attackerkb
CVE-2017-6334
2017-03-06 00:00:00
CVE-2017-6077
2017-02-22 00:00:00
exploitpack
exploitpack
NETGEAR DGN2200v1v2v3v4 - Cross-Site Request Forgery
2017-02-28 00:00:00
exploitdb
exploitdb
Netgear DGN2200v1/v2/v3/v4 - Cross-Site Request Forgery
2017-02-28 00:00:00
zdt
zdt
Netgear DGN2200 - dnslookup.cgi Command Injection Exploit
2017-06-26 00:00:00
NETGEAR DGN2200 v1/v2/v3/v4 - dnslookup.cgi Remote Command Execution Exploit
2017-02-27 00:00:00
packetstorm
packetstorm
Netgear DGN2200 dnslookup.cgi Command Injection
2017-06-24 00:00:00
Netgear DGN2201 v1/v2/v3/v4 dnslookup.cgi Remote Command Execution
2017-02-26 00:00:00
Netgear DGN2200 Authenticated Remote Command Execution
2017-02-20 00:00:00
checkpoint_advisories
checkpoint_advisories
Netgear DGN2200 dnslookup.cgi Command Injection (CVE-2017-6334)
2017-07-26 00:00:00
NETGEAR DGN2200 Remote Code Execution (CVE-2017-5521; CVE-2017-6077)
2018-05-24 00:00:00
cisa_kev
cisa_kev
NETGEAR DGN2200 Devices OS Command Injection Vulnerability
2022-03-25 00:00:00
NETGEAR DGN2200 Remote Code Execution Vulnerability
2022-03-07 00:00:00
openvas
openvas
NETGEAR DGN2200 CVE-2017-6334 RCE Vulnerability
2017-06-28 00:00:00
prion
prion
Cross site request forgery (csrf)
2017-02-22 23:59:00
Cross site request forgery (csrf)
2017-03-15 14:59:00
rapid7community
rapid7community
Metasploit Wrapup
2017-06-30 19:09:11
cisa
cisa
CISA Adds 11 Known Exploited Vulnerabilities to Catalogβ―
2022-03-07 00:00:00