Lucene search
MitreCVELIST:CVE-2021-31802HistoryApr 26, 2021 - 12:02 p.m.
CVE-2021-31802
2021-04-2612:02:32
mitre
www.cve.org
4
netgear
r7000
buffer overflow
code execution
http request
vulnerability
NETGEAR R7000 1.0.11.116 devices have a heap-based Buffer Overflow that is exploitable from the local network without authentication. The vulnerability exists within the handling of an HTTP request. An attacker can leverage this to execute code as root. The problem is that a user-provided length value is trusted during a backup.cgi file upload. The attacker must add a \n before the Content-Length header.
Related
prion
prion
Heap overflow
2021-04-26 13:15:00
nvd
nvd
CVE-2021-31802
2021-04-26 13:15:07
cnvd
cnvd
NETGEAR R7000 Code Execution Vulnerability
2021-04-27 00:00:00
metasploit
metasploit
Netgear R7000 backup.cgi Heap Overflow RCE
2021-07-27 18:00:17
seebug
seebug
NETGEAR R7000 缓冲区溢出漏洞(CVE-2021-31802)
2021-04-28 00:00:00
packetstorm
packetstorm
Netgear R7000 Backup.cgi Heap Overflow Remote Code Execution
2024-08-31 00:00:00
cve
cve
CVE-2021-31802
2021-04-26 13:15:07
rapid7blog
rapid7blog
Metasploit Wrap-Up
2021-07-30 18:04:33