Security News > 2016 > March > Bug in surveillance app opens Netgear NAS systems to compromise (Help Net Security)

A security vulnerability in the ReadyNAS Surveillance Application can be exploited by unauthenticated, remote attackers to gain root access to Netgear NAS systems, Sysdream Labs researcher Nicolas Chatelain has found. ReadyNAS Surveillance is network video recording (NVR) software that installs directly to a ReadyNAS storage device and allows companies to set up a surveillance network with different types of IP cameras. “Because the ReadyNAS Surveillance cgi_system cgi application doesn’t check the user-provided ‘bfile’ POST parameter … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/eqp092yy0cU/