Updating firmware on netgear router

posted by | Leave a comment

I made another check Wednesday night, and sure enough there was an update for my Netgear R6400 router.I let the router install it, and when it rebooted, I got a notification that it now could check for new firmware and update itself automatically. While I'm obsessive about checking for new firmware, most people aren't.

Trustwave researchers discovered five issues affected 17 Netgear router models, in total, including the company's top-seller —the Nighthawk router series.

Abhay Bhorkar, director of product line management for Netgear's Connected Home products, said some kind of notification system and the ability to defer updates could be added to the firmware in the future.

In the meantime, I'm leaving the feature disabled to prevent what could be a nasty surprise.

This bug requires physical access to the device, but an attacker can insert a USB thumb drive into the router/modem and obtain files from its storage space, including passwords. Trustwave describes this bug as "trivial to exploit." Fixes available via Netgear's website here. D6220, running firmware versions prior to 1.0.0.26 D6400, running firmware versions prior to 1.0.0.60 D8500, running firmware versions prior to 1.0.3.29 R6250, running firmware versions prior to 1.0.4.12 R6400, running firmware versions prior to 1.01.24 R6400v2, running firmware versions prior to 1.0.2.30 R6700, running firmware versions prior to 1.0.1.22 R6900, running firmware versions prior to 1.0.1.22 R6900P, running firmware versions prior to 1.0.0.56 R7000, running firmware versions prior to 1.0.9.4 R7000P, running firmware versions prior to 1.0.0.56 R7100LG, running firmware versions prior to 1.0.0.32 R7300DST, running firmware versions prior to 1.0.0.54 R7900, running firmware versions prior to 1.0.1.18 R8000, running firmware versions prior to 1.0.3.44 R8300, running firmware versions prior to 1.0.2.100_1.0.82 R8500, running firmware versions prior to 1.0.2.100_1.0.82 An already authenticated attacker can run root-level commands on affected routers and modems via the "device_name" parameter on the page. The easiest way to reach Catalin is via his XMPP/Jabber address at [email protected]

For other contact methods, please visit Catalin's author page.

Leave a Reply

  1. tristan prettyman and jason mraz dating 10-Mar-2020 12:08

    Admittedly, the audience for magazine and spoke highly of James in her first blog, “It’s super fun being paired with James.

  2. de soto formula capital updating 08-Jan-2020 22:57

    Find a date, new friends and improve your social interactions with our sophisticated dating tools – 100% FREE now and always!

  3. Adult live sexvideo chat 09-Jun-2020 22:04

    Millions of people want to know it every day and therefore everyone wants to know about its establishment and updating the facility.

Free chat fuck no sighn up