EUVD-2015-5966

Malware in sbrugna...

The vulnerability of the ping.cgi script in NETGEAR DGN2200 router’s embedded software allows a hacker to execute arbitrary commands and gain full control over the device.

The vulnerability of the ping.cgi script in NETGEAR DGN2200 router software exists because measures to neutralize specific elements used in the operating system command have not been taken. Exploiting this vulnerability allows a malicious actor to execute arbitrary operating system commands on th...

CVE-2023-2682 Caton Live Mini_HTTPD ping.cgi command injection

A vulnerability was found in Caton Live up to 2023-04-26 and classified as critical. This issue affects some unknown processing of the file /cgi-bin/ping.cgi of the component MiniHTTPD. The manipulation of the argument address with the input ;id;uname$IFS-a leads to command injection. The attack...

The vulnerability of the ping.cgi script in NETGEAR DGN2200v1 integrated router software allows a hacker to execute arbitrary commands and gain full control over the device.

The vulnerability of the ping.cgi script in NETGEAR DGN2200v1 integrated routing software exists because measures to neutralize the special elements used in the operating system command have not been taken. Exploiting this vulnerability allows a malicious actor to execute arbitrary operating syst...

NETGEAR DGN2200 Arbitrary Command Execution Vulnerability

The NETGEAR DGN2200 is an ADSL router device. An arbitrary command execution vulnerability in ping.cgi in the NETGEAR DGN2200 version 10.0.0.50 can be exploited to execute arbitrary operating system commands via shell metacharacters in the pingIPAddr field of an HTTP POST request...

CVE-2017-6077

ping.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the pingIPAddr field of an HTTP POST request...