Affected devices are vulnerable to a security bypass flaw that permits attackers to access any part of the management interface of the device. If remote administration is enabled, this can be exploited from the Internet.
This vulnerability allows an attacker to bypass certain security restrictions on the system, allowing the attacker to gain unauthorized access to the system.
BeyondTrust Prevention and Detection:
BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
- 31286 - Netgear WNDR3700 Bypass (20131031) (Zero-Day)
- 31234 - Multiple Router Vendor ping6 Command Injection (Zero-Day) - Remote
To help mitigate WAN-based attacks, disable the administration interface for non-local network addresses.