Yummysoup2

**Name of the Vulnerable Software and Affected Versions** Netgear JWNR2000v2 version 1.0.0.11 **Description** A critical issue has been discovered, affecting the `check language file` function. The manipulation of the `host` argument leads to a buffer overflow. This issue can be exploited remotely. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Netgear JWNR2000v2 version 1.0.0.11, as a temporary workaround, consider disabling the `check language file` function until a patch is available. Restrict access to the `host` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netgear JWNR2000v2 version 1.0.0.11 **Description** A critical vulnerability was found in the `default version is new` function. The manipulation of the `host` argument leads to a buffer overflow. This issue can be exploited remotely. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Netgear JWNR2000v2 version 1.0.0.11, as a temporary workaround, consider restricting access to the `default version is new` function until a patch is available. Avoid using the `host` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netgear JWNR2000v2 version 1.0.0.11 **Description** A critical issue has been found in the `get cur lang ver` function, where manipulation of the `host` argument leads to a buffer overflow. This issue can be exploited remotely. The vendor was contacted about this issue but did not respond. **Recommendations** For Netgear JWNR2000v2 version 1.0.0.11, as a temporary workaround, consider restricting access to the `get cur lang ver` function until a patch is available. Avoid using the `host` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netgear JWNR2000v2 version 1.0.0.11 **Description** A critical issue was found affecting the function sub 41A914. The manipulation of the `host` argument leads to a buffer overflow. The vendor was contacted about this issue but did not respond. **Recommendations** For Netgear JWNR2000v2 version 1.0.0.11, as a temporary workaround, consider restricting the manipulation of the `host` argument to minimize the risk of buffer overflow until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Netgear JWNR2000v2 version 1.0.0.11 **Description** A critical vulnerability was found in the Netgear JWNR2000v2, affecting the function `sub 4238E8`. The manipulation of the argument `host` leads to a buffer overflow. This issue can be exploited remotely. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Netgear JWNR2000v2 version 1.0.0.11, as a temporary workaround, consider disabling the `sub 4238E8` function until a patch is available. Restrict access to the vulnerable function to minimize the risk of exploitation. Avoid using the argument `host` in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netgear JWNR2000v2 version 1.0.0.11 **Description** A critical issue was found in the `cmd wireless` function, where manipulation of the `host` argument leads to command injection. This issue can be exploited remotely. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Netgear JWNR2000v2 version 1.0.0.11, as a temporary workaround, consider disabling the `cmd wireless` function until a patch is available. Restrict access to the `host` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.