NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

jim_0's avatar
jim_0
Aspirant
Jun 07, 2022

R7800 with vulnerable Netatalk detected by nessus scanner

did a nessus scan on my internal network and the only critical vulnerability is on my router netatalk version, how do i remedy this?

 

CRITICAL

Netatalk OpenSession Remote Code Execution

Description
The Apple Filing Protocol (AFP) server running on the remote host is affected by a remote code execution vulnerability due to a buffer overflow condition when handling an OpenSession request. An unauthenticated, remote attacker can exploit this issue, via a specially crafted message, to execute arbitrary code.
 
Solution
Upgrade to Netatalk 3.1.12 or later.
 
See Also
Hardware
Security

3 Replies

    • microchip8's avatar
      microchip8
      Master
      Jun 07, 2022
      You can try installing Voxel's firmware. It's stock with optimizations and bug fixes. I don't think it suffers from the Netatalk issue