NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Latest Firmware Version for WNDR4500
Hi Community, can someone please tell me what the latest firmware version is for the WNDR4500? The support site says it's v1.0.1.40_1.0.68, which I have installed. And when I check for a new ...
Gottex wrote:
I have the same router and I also wonder whether I should stay with v1.0.1.40_1.0.68 (latest) or update v1.0.1.44_1.0.73 (can't find it anywhere )
They revised the kb page today, and the WNDR4500 firmware version was changed to v1.0.1.40_1.0.68.
To be clear, the KB article says that the WNDR4500 router firmware is vulnerable - it is on the list of routers that haven't been fixed.
They give a workaround which remediates the vulnerability
Netgear wrote:
- Manually enable the password recovery feature on your device.
For more information, visit Configuring router administrative password recovery. - Ensure that remote management is disabled.
Remote management is disabled by default. For more information, check the user manual for your product, which is available from http://www.netgear.com/support/.
The potential for password exposure remains if you do not complete both steps.
- Manually enable the password recovery feature on your device.
Gottex wrote:
I have the same router and I also wonder whether I should stay with v1.0.1.40_1.0.68 (latest) or update v1.0.1.44_1.0.73 (can't find it anywhere )
There are some things clearly wrong with that KB article, I've already PM'd ElaineM asking for clarification. Other router models link you to outdated firmware, which is vulnerable to other CVEs.
I'd hold off taking any action based on that article right now.
Gottex wrote:
I have the same router and I also wonder whether I should stay with v1.0.1.40_1.0.68 (latest) or update v1.0.1.44_1.0.73 (can't find it anywhere )
They revised the kb page today, and the WNDR4500 firmware version was changed to v1.0.1.40_1.0.68.
To be clear, the KB article says that the WNDR4500 router firmware is vulnerable - it is on the list of routers that haven't been fixed.
They give a workaround which remediates the vulnerability
Netgear wrote:
- Manually enable the password recovery feature on your device.
For more information, visit Configuring router administrative password recovery.- Ensure that remote management is disabled.
Remote management is disabled by default. For more information, check the user manual for your product, which is available from http://www.netgear.com/support/.The potential for password exposure remains if you do not complete both steps.
Thanx, done ! :smileywink: