CVE-2013-10060

EUVD-2013-7265
An authenticated OS command injection vulnerability exists inĀ Netgear routers (tested on the DGN2200B model) firmware versions 1.0.0.36 and prior via the pppoe.cgi endpoint. A remote attacker with valid credentials can execute arbitrary commands via crafted input to the pppoe_username parameter. This flaw allows full compromise of the device and may persist across reboots unless configuration is restored.
OS Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 HIGH
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
Affected Products (NVD)
VendorProductVersion
netgeardgn2200b_firmware
𝑥
≤ 1.1.0.36
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/http/netgear_dgn2200b_pppoe_exec.rb
https://web.archive.org/web/20170422033239/http://www.s3cur1ty.de/m1adv2013-015
https://www.exploit-db.com/exploits/24513
https://www.exploit-db.com/exploits/24974
https://www.vulncheck.com/advisories/netgear-legacy-routers-rce
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/http/netgear_dgn2200b_pppoe_exec.rb
https://web.archive.org/web/20170422033239/http://www.s3cur1ty.de/m1adv2013-015
https://www.exploit-db.com/exploits/24513
https://www.exploit-db.com/exploits/24974