Vulnerabilities > Netgear

DATE CVE VULNERABILITY TITLE RISK
2004-05-24 CVE-2004-2032 Unspecified vulnerability in Netgear Rp114 3.26
Netgear RP114 allows remote attackers to bypass the keyword based URL filtering by requesting a long URL, as demonstrated using a large number of %20 (hex-encoded space) sequences.
network
low complexity
netgear
7.5
2003-12-31 CVE-2003-1427 Path Traversal vulnerability in Netgear Fm114P 1.4Betarelease17
Directory traversal vulnerability in the web configuration interface in Netgear FM114P 1.4 allows remote attackers to read arbitrary files, such as the netgear.cfg configuration file, via a hex-encoded (%2e%2e%2f) ../ (dot dot slash) in the port parameter.
network
low complexity
netgear CWE-22
6.4
2002-12-31 CVE-2002-2355 Credentials Management vulnerability in Netgear Fm114P
Netgear FM114P firmware 1.3 wireless firewall, when configured to backup configuration information, stores DDNS (DynDNS) user name and password, MAC address filtering table and possibly other information in cleartext, which could allow local users to obtain sensitive information.
network
netgear CWE-255
7.1
2002-12-31 CVE-2002-2354 Improper Input Validation vulnerability in Netgear Fm114P
Netgear FM114P firmware 1.3 wireless firewall allows remote attackers to cause a denial of service (crash or hang) via a large number of TCP connection requests.
network
low complexity
netgear CWE-20
7.8
2002-12-31 CVE-2002-2116 Denial Of Service vulnerability in Netgear Rm356 and Rt338
Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap.
network
low complexity
netgear
5.0
2002-12-31 CVE-2002-2020 Unspecified vulnerability in Netgear Rp114 3.26
Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26 uses a default administrator password and accepts admin logins on the external interface, which allows remote attackers to gain privileges if the password is not changed.
network
low complexity
netgear
7.5
2002-12-31 CVE-2002-1892 Unspecified vulnerability in Netgear Fvs318 1.1
NETGEAR FVS318 running firmware 1.1 stores the username and password in a readable format when a backup of the configuration file is made, which allows local users to obtain sensitive information.
local
low complexity
netgear
2.1
2002-12-31 CVE-2002-1877 Permissions, Privileges, and Access Controls vulnerability in Netgear Fm114P
NETGEAR FM114P allows remote attackers to bypass access restrictions for web sites via a URL that uses the IP address instead of the hostname.
network
low complexity
netgear CWE-264
7.5
2002-05-29 CVE-2002-0238 Cross-Site Scripting vulnerability in Netgear RT314/RT311 Gateway Router
Cross-site scripting vulnerability in web administration interface for NetGear RT314 and RT311 Gateway Routers allows remote attackers to execute arbitrary script on another client via a URL that contains the script.
network
low complexity
netgear
7.5
2002-03-25 CVE-2002-0127 Unspecified vulnerability in Netgear Rp114 3.26
Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26, when configured to block traffic below port 1024, allows remote attackers to cause a denial of service (hang) via a port scan of the WAN port.
network
low complexity
netgear
5.0