5 matches found
CVE-2009-2257
The administrative web interface on the Netgear DG632 with firmware 3.4.0ap allows remote attackers to bypass authentication via a direct request to 1 gateway/commands/saveconfig.html, and 2 stattbl.htm, 3 modemmenu.htm, 4 onload.htm, 5 form.css, 6 utility.js, and possibly 7 indextop.htm in html/...
Design/Logic Flaw
The administrative web interface on the Netgear DG632 with firmware 3.4.0ap allows remote attackers to cause a denial of service web outage via an HTTP POST request to cgi-bin/firmwarecfg...
Directory traversal
Directory traversal vulnerability in cgi-bin/webcm in the administrative web interface on the Netgear DG632 with firmware 3.4.0ap allows remote attackers to list arbitrary directories via a .. dot dot in the nextpage parameter...
CVE-2009-2256
The administrative web interface on the Netgear DG632 with firmware 3.4.0ap allows remote attackers to cause a denial of service web outage via an HTTP POST request to cgi-bin/firmwarecfg...
CVE-2009-2257
The administrative web interface on the Netgear DG632 with firmware 3.4.0ap allows remote attackers to bypass authentication via a direct request to 1 gateway/commands/saveconfig.html, and 2 stattbl.htm, 3 modemmenu.htm, 4 onload.htm, 5 form.css, 6 utility.js, and possibly 7 indextop.htm in html/...