Vulnerable

Question

Vulnerable

SilentT-FR opened this issue 11 years ago · comments

DG834 V5.01.09 Yes - Via Wan (Internet)
Cisco WAP4410N-E V02 2.0.1.0 Yes - Via Wan (Internet)
Cisco WAP4410N-E V02 2,0,2,1 Yes - Via Wan (Internet)
Cisco WAP4410N-E V02 2.0.3.3 Yes - Via Wan (Internet)
Cisco WAP4410N-E V02 2.0.4.2 Yes - Via Wan (Internet)
Cisco WAP4410N-E V02 2.0.5.3 Yes - Via Wan (Internet)
Cisco WAP4410N-E V02 2.0.6.1 Yes - Via Wan (Internet)
Netgear DGN2000 1.1.1 Yes - Via Wan (Internet)
Netgear DGN2000 1.1.11.0 Yes - Via Wan (Internet)
Netgear DGN2000 1.3.10.0 (North America) Yes - Via Wan (Internet)
Netgear DGN2000 1.3.11.0 (North America) Yes - Via Wan (Internet)
Netgear DGN2000 1.3.12.0 (North America) Yes - Via Wan (Internet)

Eloi Benoist-Vanderbeken · Answer 1 · Sat Jan 04 2014 22:20:32 GMT+0800 (China Standard Time)

strange, the Netgear DG834G v5 is not vulnerable...

Thank you for your report :)

SilentT · Answer 2 · Mon Jan 06 2014 04:36:12 GMT+0800 (China Standard Time)

Le 04/01/2014 15:20, elvanderb a écrit :

strange, the Netgear DG834G v5 is not vulnerable...

Thank you for your report :)

Reply to this email directly or view it on GitHub:
#44 (comment)
c'est le DG834Gv4 firmware V5.01.01 et pas le DGv834Gv5 ^^ desolé de la
confusion le DGv834v5 a un firmware en v6....

Vulnerable aussi:
DG834GV4 firmware V5.01.01, V5.01.09 , V5.01.14, V5.01.16
DG834GV3 firmware V4.01.04
DG834GV2 firmware V3.01.38

sa fonctionne depuis le wan si le pare feu est ouvert ! par defaut tout
est fermer donc bon depuis le wan sa risque rien sauf si les mec ouvre
tout !

Je pensse qu'un jolie tableau serait plus jolie et plus propre :)

Eloi Benoist-Vanderbeken · Answer 3 · Mon Jan 06 2014 04:41:38 GMT+0800 (China Standard Time)

t'es le bienvenu pour le faire ;)

Ben Humpert · Answer 4 · Tue Jan 21 2014 02:16:35 GMT+0800 (China Standard Time)

Somehow all of my three Cisco WAP4410N-E v02 fw2.0.6.1 are not vulnerable! I used my config (VLAN) and then did a reset to factory defaults but still no open port.

Eloi Benoist-Vanderbeken · Answer 5 · Tue Jan 21 2014 04:14:32 GMT+0800 (China Standard Time)

I'll remove those routers.

Tek Bear · Answer 6 · Mon May 11 2015 03:53:58 GMT+0800 (China Standard Time)

@SilentT-FR
looking on Netgear.com (http://downloadcenter.netgear.com/en/product/DG834Gv2#searchResults) I found no information about any release of DG834GV2 firmware V3.01.38 the last release was V3.01.29
Are you sure it was V3.01.38 ?

SilentT · Answer 7 · Mon May 11 2015 12:13:47 GMT+0800 (China Standard Time)

Sorry is only for the v1 ans UK VERSION http://downloadcenter.netgear.com/en/product/DG834v1#searchResults

Envoyé de mon iPhone

Le 10 mai 2015 à 21:54, Tek Bear notifications@github.com a écrit :

@SilentT-FR
looking on Netgear.com (http://downloadcenter.netgear.com/en/product/DG834Gv2#searchResults) I found no information about any release of DG834GV2 firmware V3.01.38 the last release was V3.01.29
Are you sure it was V3.01.38 ?

—
Reply to this email directly or view it on GitHub.

Tek Bear · Answer 8 · Wed May 13 2015 09:29:22 GMT+0800 (China Standard Time)

@SilentT-FR I looked at the file http://downloadcenter.netgear.com/en/product/DG834v1#searchResults
and grabbed the file. It mixes v1 and v2 this is confusing.

"DG834 and DG834G Firmware Version 3.01.38 (for use in UK only).zip" contains:

"ReleaseNotes_DG834v1_fw_3.01.38.html" (text only mentions base DG834 model)

"dg834v2_dg834gv2_3_01_38_uk_only.zip" (contains "DG834GV2_V3.01.38.img")

Can anyone confirm it is for "v1" model the "img" file implies for "v2" UK model