CVE-2016-10174

This Metasploit module exploits a buffer overflow in NETGEAR WNR2000v5 routers via the `hidden_lang_avi` parameter, allowing unauthenticated or authenticated RCE. It brute-forces a timestamp token if unauthenticated, then triggers a stack overflow to execute a payload enabling a telnet shell.

This exploit targets a buffer overflow vulnerability in NETGEAR WNR2000v5 routers, allowing remote code execution. It includes methods to bypass authentication, retrieve credentials, and execute arbitrary commands via a crafted payload.

This Metasploit module exploits a stack buffer overflow in NETGEAR WNR2000 routers via the 'hidden_lang_avi' parameter, allowing remote command execution. It supports both authenticated and unauthenticated exploitation by brute-forcing a timestamp token.