NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
NightHawk X4S AC2600 Model R7800 VU#582384
I tried using the http://[router-address]/cgi-bin/;uname$IFS-a link to see if my computer was affected with the bug. And I got the number 0 on the screen. Which makes me wonder if my router is affect...
It's not one of the known affected models at this time. Please see the Security Advisory for VU 582384
You should keep an eye on that advisory for now as we are updating it regularly.
It's not one of the known affected models at this time. Please see the Security Advisory for VU 582384
You should keep an eye on that advisory for now as we are updating it regularly.
It still doesn't answer the question. Is the 0 in the page considered an error? Because if not, then it is affected as stated in many articles using the http://[router-address]/cgi-bin/;uname$IFS-a to check vulnerability of router. Saying it's not part of the affected list doesn't tell me if the 0 i'm getting on screen is an error. Hope this clearify the question I was asking. Thank you.
What you see looks like a blank page to me:
The accessed Web page should show a error or blank page, otherwise you can assume that the fix didn’t work.
That (with its grammar lapse) is from:
Netgear Router: Critical Unfixed Vulnerability Permits Hacker Takeover
It's in top left corner.. It's the best picture I could get. I could send it thru imgur maybe it has a better image.
Anyways I sent a letter to the netgear secrutiy support email. waiting for a response. :)
katedan19772001 wrote:
It still doesn't answer the question. Is the 0 in the page considered an error?
Try http://[router-address]/cgi-bin/;killall$IFS’httpd’ That will kill the web server in the router if you are vulnerable. Then close the browser, open a new instance and try to reach the router web page. If you can't, then you are affected. If you can, then you aren't.
If you are affected, you can power-cycle the router and the web page will come back. Note that while the web server is killed the vulnerability can't be exploited, so the router is fully safe to use. Though of course you can't change the settings, etc.
StephenB wrote:If you are affected, you can power-cycle the router ...
I respond this time only to pass on a salutary anecdote from another conversation that came up here the other days.
"What does power cycle mean?" a user asked.
This reminded me how easy it is for some of us to lose sight of what people do and don't know.
I advised that it just means turn it off and then back on at the mains.
But was that correct? Is there a difference between that and using the switch on the back?
