I've got a VPN server running on our network in order to configure,administrate and access the network remotely so basically you've to create a secure tunnel with a certificate into the network first.
The only open ports are for the web servers and HTTPS NAS access (via proxy server).
I think it's more secure to do it that way rather than opening the Netgear router or any other device on the network to be configured by WAN admin access.
Oliver341 (eat-sleep-adslguide)
Sun 11-Oct-15 16:05:48
It's an authentication bypass. Vulnerabilities in router web servers are incredibly common. Never enable remote web administration on a router.
Similar to the D-Link one then, unauthenticated access to WAN-side admin. I use remote admin only when I can firewall all addresses other that the one that needs access.
But still, there's no excuse for such vulnerabilities.
However, Mr Wu added that attackers would have to get access to the network first and then guess the admin password.
That sentence doesn't seem to be in the article? Was it in there and they've deleted it?
The article suggests the password is not needed as the vulnerability is you can access the router bypassing the security. If the password is needed then it is not a security flaw as such as they were just changing DNS settings which is something you can do if you have the password.
Pages in this thread: 
Print Thread
Zadeks
A friend surfing in