CVE-2017-6334
CVE-2017-6334
Vexday Risk Score
100Fix now
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
CVSS 8.8EPSS 72.2%KEV simPoC públicaNuclei —Metasploit simPatch —
Lifecycle
25 Feb 2017Metasploit module available
25 Feb 2017Public PoC
06 Mar 2017Published on NVD
25 Mar 2022Active exploitation (CISA KEV)
Recommendation: Patch as soon as possible — active exploitation confirmed.
In short
A web interface on NETGEAR DGN2200 routers allows authenticated users to run arbitrary commands on the device by injecting shell commands through a DNS lookup form. An attacker with router access can take complete control of the device.
Technical detail
CWE-78 OS Command Injection in dnslookup.cgi POST parameter 'host_name' allows authenticated remote code execution via unvalidated shell metacharacters. Requires prior authentication to the router web interface; successful exploitation grants arbitrary command execution with router privileges.
Summary generated and translated by AI from the official description.
dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the host_name field of an HTTP POST request, a different vulnerability than CVE-2017-6077.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 6
cve_referencewww.exploit-db.com/exploits/41459/unverifiedcve_referencewww.exploit-db.com/exploits/41472/unverifiedcve_referencewww.exploit-db.com/exploits/42257/unverifiedexploitdbwww.exploit-db.com/exploits/42257unverifiedexploitdbwww.exploit-db.com/exploits/41459unverifiedexploitdbwww.exploit-db.com/exploits/41472unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →