The recent vulnerability that’s been found in several Netgear routers is receiving a lot of attention due to its severity. Many leading computer security experts say that the problem is so bad that if you have one, you should turn the device off and remove it from your network.
But how do you tell whether your router is affected by this problem?
Not to worry, RouterCheck makes it easy. To determine if your router is vulnerable to the Netgear Command Injection problem, simply follow these instructions:
Step 1 – Install RouterCheck
If you’ve never used RouterCheck before, you’ll need to install it on an Android device. Download and install RouterCheck from Google Play on your Android device.
Step 2 – Run RouterCheck
Be sure that you’re connected to the router you want to check. On your Android device, tap the RouterCheck icon to start the application.
Step 3 – Verify the RouterCheck Version
RouterCheck version 0.9.5 and higher supports checking whether a router has the Netgear Command Injection Vulnerability.
To check which version you’re running, on the main screen, tap About RouterCheck. The version number is in the Product Version field.
Step 4 – Run a Check
Return to the main screen and tap Check My Router. RouterCheck prompts you for some basic information and it verifies that you have permission to check your router. RouterCheck begins checking your router to assess how secure it is. It will check whether you have a strong password, good wireless security, and whether anything is exposed on the internet. It also runs a test to see if your router is vulnerable to the Netgear Command Injection Vulnerability.
The check should take approximately one minute to fully run.
Step 5 – Check the Results
After RouterCheck finishes running the check, it will display the results. You can find the results of the Netgear Command Injection Vulnerability in the last section, Tested Vulnerabilities. You may need to scroll down to the bottom of the page to see this. If this bar is green, you’re fine — all the tests that RouterCheck ran against known vulnerabilities passed.
If the bar is red, then click the section to see the results. There will be a list of 8 vulnerabilities that RouterCheck tested. The Netgear Command Injection Vulnerability is test #7. Look at the Passed the Test field to see whether your router is vulnerable.
Step 6 – Check all the Results
You may want to review all the issues that RouterCheck identified for your router. It may be worthwhile to fix any identified problems.
If you find that your router is vulnerable to the Netgear Command Injection Vulnerability, Michael Horowitz put together a great resource to find more information. While experts are telling us not to use these devices, you can find some instructions on his page to temporarily mitigate the problem.