NETGEAR HAS confirmed that a number of its routers have a security vulnerability which can be triggered by a malicious weblink from one machine on the network allowing a code injection allowing access to every attached device.
The discovery, VU #582384, which came to light late on Friday, has been validated by the US Computer Emergency Readiness Team (CERT) as affecting models including the R6250, R6400, R6700, R7000, R7100LG, R7300, R7900, and R8000.
Although these are the only models officially affected, Netgear hasn’t ruled out that others may manifest, though it is keen to emphasise that as of yet, only those models named are subject to the announcement.
Netgear has confirmed that it is actively working on a production firmware which plugs the vulnerability stating,
"While we are working on the production version of the firmware, we are providing a beta version of this firmware release," a spokesperson told the INQUIRER.
"This beta firmware has not been fully tested and might not work for all users. Netgear is offering this beta firmware release as a temporary solution, but Netgear strongly recommends that all users download the production version of the firmware release as soon as it is available.”
The Beta is available for the R6400, R7000 and R8000 only.
If in doubt, the advice varies depending on who you ask, but one security blogger has suggested that by typing in http://[router-address]/cgi-bin/;killall$IFS'httpd' to your browser, it will kill any processes that are causing the problem. This is not official advice, however.
CERT is actually advising the customers stop using the affected routers until there’s a patch. Yeah, that’s practical, coz we all have a spare router knocking around. (Actually, we do, but it’s sort of our job).
Although the newly launched Orbi triband system shares a lot in common with the routers listed, it is not thought that this is affected.
In 2015, Netgear routers were found to be one of several brands affected by a drive-by DNS hopper vulnerability which had lain dormant for years. µ
What we'd call copying, Cupertino calls 'inspiration'
That's one way to dampen today's launch
The sound of cyber
But it's only for PCs touting GeForce RTX cards