{"vuid":"VU#928795","idnumber":"928795","name":"Netgear FVS318N router default remote management vulnerability","keywords":["NetGear","FVS318N","remote management"],"overview":"Netgear ProSafe Wireless-N 8-port Gigabit VPN Firewall FVS318N router's remote management feature is enabled by default.","clean_desc":"Netgear ProSafe Wireless-N 8-port Gigabit VPN Firewall FVS318N router allows remote (WAN) internet users access to the administrator web interface of the device by default.","impact":"A remote unauthenticated attacker may be able to access the administrator web interface of the device.","resolution":"We are currently unaware of a practical solution to this problem.","workarounds":"Disable the remote management feature We recommend users disable the remote management feature inside the administrator web interface of the device.","sysaffected":"","thanks":"Thanks to David Barker of Electrosonics, Inc. for reporting this vulnerability.","author":"This document was written by Michael Orlando.","public":["h","t","t","p",":","/","/","w","w","w",".","n","e","t","g","e","a","r",".","c","o","m","/","b","u","s","i","n","e","s","s","/","p","r","o","d","u","c","t","s","/","s","e","c","u","r","i","t","y","/","w","i","r","e","l","e","s","s","-","V","P","N","-","f","i","r","e","w","a","l","l","s","/","F","V","S","3","1","8","N",".","a","s","p","x"],"cveids":[""],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2012-01-13T19:46:16Z","publicdate":"2012-04-02T00:00:00Z","datefirstpublished":"2012-04-02T15:27:39Z","dateupdated":"2013-04-03T19:26:25Z","revision":16,"vrda_d1_directreport":"1","vrda_d1_population":"2","vrda_d1_impact":"3","cam_widelyknown":"0","cam_exploitation":"0","cam_internetinfrastructure":"0","cam_population":"0","cam_impact":"0","cam_easeofexploitation":"0","cam_attackeraccessrequired":"0","cam_scorecurrent":"0","cam_scorecurrentwidelyknown":"0","cam_scorecurrentwidelyknownexploited":"0","ipprotocol":"","cvss_accessvector":"N","cvss_accesscomplexity":"L","cvss_authentication":null,"cvss_confidentialityimpact":"P","cvss_integrityimpact":"P","cvss_availabilityimpact":"P","cvss_exploitablity":null,"cvss_remediationlevel":"W","cvss_reportconfidence":"UC","cvss_collateraldamagepotential":"L","cvss_targetdistribution":"L","cvss_securityrequirementscr":"ND","cvss_securityrequirementsir":"ND","cvss_securityrequirementsar":"ND","cvss_basescore":"7.5","cvss_basevector":"AV:N/AC:L/Au:N/C:P/I:P/A:P","cvss_temporalscore":"6.1","cvss_environmentalscore":"1.6","cvss_environmentalvector":"CDP:L/TD:L/CR:ND/IR:ND/AR:ND","metric":0.0,"vulnote":null}