Posted by Pedro Ribeiro on Feb 03

Hi,

CERT/CC has helped me disclose two vulnerabilities in NETGEAR’s
Pro”safe” Network Management System 300 [1]. Two classical bugs: one
remote code execution via arbitrary file upload and an authenticated
arbitrary file download.

The full advisory can be seen in my repo at [2] and it is also pasted
below. I’ve also released two Metasploit modules to exploit these
vulnerabilities [3][4].

There is currently no fix for these…