Vulnerabilities > Netgear > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-09-13 | CVE-2006-4765 | Denial Of Service vulnerability in Netgear Dg834Gt 1.01.28 NETGEAR DG834GT Wireless ADSL router running firmware 1.01.28 allows attackers to cause a denial of service (device hang) via a long string in the username field in the login window. | 5.0 |
| 2006-03-07 | CVE-2006-1068 | Denial-Of-Service vulnerability in Netgear Router Netgear 614 and 624 routers, possibly running VXWorks, allow remote attackers to cause a denial of service by sending a malformed DCC SEND string to an IRC channel, which causes an IRC connection reset, possibly related to the masquerading code for NAT environments, and as demonstrated via (1) a DCC SEND with a single long argument, or (2) a DCC SEND with IP, port, and filesize arguments with a 0 value. | 4.9 |
| 2006-03-06 | CVE-2006-1003 | Information Disclosure vulnerability in Netgear WGT624 Wireless Firewall Router The backup configuration option in NETGEAR WGT624 Wireless Firewall Router stores sensitive information in cleartext, which allows remote attackers to obtain passwords and gain privileges. | 5.0 |
| 2005-05-02 | CVE-2005-0328 | Remote Security vulnerability in Rt311 Zyxel P310, P314, P324 and Netgear RT311, RT314 running the latest firmware, allows remote attackers on the WAN to obtain the IP address of the LAN side interface by pinging a valid LAN IP address, which generates an ARP reply from the WAN address side that maps the LAN IP address to the WAN's MAC address. | 5.0 |
| 2005-01-17 | CVE-2005-0291 | Multiple vulnerability in Netgear Fvs318 2.4 Cross-site scripting (XSS) vulnerability in the log viewer in NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via a blocked URL phrase. network netgear | 4.3 |
| 2004-12-31 | CVE-2004-2557 | Unspecified vulnerability in Netgear Wg602 1.7.14 NetGear WG602 (aka WG602v1) Wireless Access Point 1.7.14 has a hardcoded account of username "superman" and password "21241036", which allows remote attackers to modify the configuration. | 5.0 |
| 2004-12-31 | CVE-2004-2556 | Unspecified vulnerability in Netgear Wg602 1.04.0/1.5.67 NetGear WG602 (aka WG602v1) Wireless Access Point firmware 1.04.0 and 1.5.67 has a hardcoded account of username "super" and password "5777364", which allows remote attackers to modify the configuration. | 5.0 |
| 2004-12-06 | CVE-2004-0611 | Denial Of Service vulnerability in Multiple Vendor Broadband Router Web-Based Administration Web-Based Administration in Netgear FVS318 VPN Router allows remote attackers to cause a denial of service (no new connections) via a large number of open HTTP connections. | 5.0 |
| 2003-12-31 | CVE-2003-1427 | Path Traversal vulnerability in Netgear Fm114P 1.4Betarelease17 Directory traversal vulnerability in the web configuration interface in Netgear FM114P 1.4 allows remote attackers to read arbitrary files, such as the netgear.cfg configuration file, via a hex-encoded (%2e%2e%2f) ../ (dot dot slash) in the port parameter. | 6.4 |
| 2002-12-31 | CVE-2002-2116 | Denial Of Service vulnerability in Netgear Rm356 and Rt338 Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap. | 5.0 |