NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
CM600 error counts still zero after three days.
I've had a CM600 on-line for 3 days and the downstream error counts are still zero. Is this a firmware issue or a hardware fault or did my line become amazingly error free for the last few days?
Jim769 wrote:From what i have read these modems CM-600 and the 400,500 have a sercurity issue that has still not been patched for close to 6 months or longer. I returned my CM-600 today and put my SB-6183 back in line.
The security bulletin is too vague to be useful however most SB models from the last few years (since 2009) have similar security issues. Since it's up to the cable operator to push the fix it doesn't matter when Netgear/Arris/Zoom provides a patch to the operator. If you're with Time Warner Cable the SB-6183 has multiple fixes waiting -- the other operators mostly just have the last security patch to push.
Arris modems model 6121,6141.6183,6190 have all had new firmware twice in the last year. As of right now there are no security issues with the mentioned Arris modems what so ever. The same can not be said for Netgear. From what i have been told by comcast insiders is Netgear has not even submitted a new firmware at least for the CM-600. So that means if Netgear submitted today it could still take a month or longer before cocmast even strats a soak for it let alone the mass release. Not good folks..
Jim769 wrote:Arris modems model 6121,6141.6183,6190 have all had new firmware twice in the last year. As of right now there are no security issues with the mentioned Arris modems what so ever. The same can not be said for Netgear. From what i have been told by comcast insiders is Netgear has not even submitted a new firmware at least for the CM-600. So that means if Netgear submitted today it could still take a month or longer before cocmast even strats a soak for it let alone the mass release. Not good folks..
Want to add this is on the Comcast network can't speak for other ISP's and there firmware practices.
Jim769 wrote:Arris modems model 6121,6141.6183,6190 have all had new firmware twice in the last year. As of right now there are no security issues with the mentioned Arris modems what so ever.
Except of course as you note later updates depend on the operators. So there are outstanding issues "what so ever".
However the proof of concept for the kind "security" problem noted in the Netgear posting requires social engineering to work. Most devices that require a login like the CM600 or the SB-6190 are not subject the HTML attacks against devices that don't require a login. In the alert I saw Netgear did not provide enough information to include devices that come with a changeable password in the alert. Was there another?