no one is safe ...

Netgear

Multiple Vulnerabilities in Netgear DGN2200B

Device Name: DGN2200B
Vendor: Netgear

============ Vulnerable Firmware Releases: ============

Hardwareversion DGN2200B
Firmwareversion V1.0.0.36_7.0.36 - 04/01/2011
GUI Sprachversion: V1.0.0.25

============ Device Description: ============

Infos: http://www.netgear.com/home/products/wirelessrouters/work-and-play/dgn22...
http://www.netgear.de/products/home/wireless_routers/work-and-play/DGN22...

Firmware download: http://kb.netgear.com/app/answers/detail/a_id/18990/~/dgn2200%2Fdgn2200b...

Multiple Vulnerabilities in Netgear DGN1000B

Device Name: DGN1000B
Vendor: Netgear

============ Vulnerable Firmware Releases: ============

Firmwareversion: V1.1.00.24
Firmwareversion: V1.1.00.45

Download: http://downloadcenter.netgear.com/de/product/DGN1000

============ Device Description: ============

The N150 Wireless ADSL2+ Modem Router DGN1000 provides you with an easy and secure way to set up a wireless home network with fast access to the Internet over a high-speed digital subscriber line (DSL). The N150 Modem Router has a built-in DSL modem and is compatible with all major DSL Internet service providers. The security features let you block unsafe Internet content and applications, and protect the devices that you connect to your home network.

Source: http://support.netgear.com/product/DGN1000

============ Shodan Torks ============

Shodan Search: NETGEAR DGN1000

============ Vulnerability Overview: ============

The Home Network Horror days starting right now …

Welcome to the following 2 crazy weeks with lots of vulnerabilities in more than 20 different home network devices. We have quite a high number of hopefully interesting vulnerabilities in devices from different vendors like Linksys, D'Link or Netgear for you.

Today we start with a short intro video which demonstrates unauthenticated execution of OS commands on two home routers of D-Link. The D-Link DIR-300 rev B and D-Link DIR-600 are still unpatched and an attacker is able to directly compromise these devices via the web interface. You will find the advisory here.

Multiple Vulnerabilities in Netgear SPH200D [Update: 03.02.2013]

Device Name: SPH200D
Vendor: Netgear

============ Vulnerable Firmware Releases: ============

Firmware Version : 1.0.4.80
Kernel Version : 4.1-18
Web Server Version : 1.5

============ Device Description: ============

http://support.netgear.com/product/SPH200D

============ Shodan Torks ============

Shodan Search: SPH200D
=> Results 337 devices

============ Vulnerability Overview: ============

  • directory traversal: