CVE-2018-21163

Vulnerability

A stack-based buffer overflow vulnerability exists in multiple NETGEAR devices, including DGN2200Bv4, DGN2200v4, EX3700, EX3800, EX6000, EX6100, EX6120, EX6130, EX6150, EX6200, EX7000, R6300v2, R6900P, R7000P, R7300DST, R7900P, R8000, R8000P, WN2500RPv2, and WNDR3400v3, when running firmware versions prior to the fixed releases listed in the advisory [1]. The bug is triggered after successful authentication, meaning an attacker must first log in to the device's management interface.

Exploitation

An attacker must have valid administrative credentials to the device's web-based management interface. Once authenticated, the attacker can send crafted input that overflows a stack buffer, potentially leading to code execution or denial of service. No user interaction beyond the initial authentication is required [1].

Impact

Successful exploitation allows an authenticated attacker to achieve a stack-based buffer overflow, which can result in a denial-of-service condition or possibly arbitrary code execution on the device. The attacker gains full control or can crash the device, depending on the exploit [1].

Mitigation

NETGEAR has released firmware updates for all affected models as listed in the advisory [1]. Customers should upgrade to the following fixed versions: DGN2200Bv4 and DGN2200v4 to 1.0.0.102; EX3700 and EX3800 to 1.0.0.70; EX6000 to 1.0.0.30; EX6100 to 1.0.2.22; EX6120 to 1.0.0.40; EX6130 to 1.0.0.22; EX6150 to 1.0.0.38; EX6200 to 1.0.3.86; EX7000 to 1.0.0.64; R6300v2 to 1.0.4.22; R6900P and R7000P to 1.3.0.18; R7300DST to 1.0.0.62; R7900P and R8000P to 1.3.0.10; R8000 to 1.0.4.12; WN2500RPv2 to 1.0.1.52; and WNDR3400v3 to 1.0.1.18. No workaround is provided; users are strongly recommended to apply the firmware updates [1].