NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
NETGEAR Routers and CVE-2016-582384 security vulnerability
I am a bit concerned about this recent article: http://www.zdnet.com/article/two-netgear-routers-are-vulnerable-to-trivial-to-remote-hack/ https://www.kb.cert.org/vuls/id/582384 Details: Overview Net...
NETGEAR is aware of the security issue #582384 affecting R6250, R6400, R6700, R6900, R7000, R7100LG, R7300DST, R7900, R8000, D6220, D6400 routers. Stay updated here: http://kb.netgear.com/000036386/CVE-2016-582384We now have beta firmware containing fixes for some affected models.
We're working hard on fixes for the other affected models and will update the security ticket above soon.
**** UPDATE from NETGEAR - Added by ChristineT on 12/15/16 at 10:30 AM PST ****
To our NETGEAR Community, we sincerely apologize for any complications you may have encountered due to the recently publicized vulnerability, referred to as VU 582384. We initially became aware of this vulnerability last Friday when CERT emailed us, and because we had no record of a prior report, we began our standard process of validation prior to making any public statements.
Once it had been disclosed that the first notification actually occurred in August, we conducted a search and confirmed this was the case. Admittedly, this was an oversight on our part. While no security reporting system is perfect, we aim to do better, and are evaluating how to improve our response process.
NETGEAR has created a channel for security researchers and other members of the public to contact us regarding potential security issues affecting NETGEAR products (security@netgear.com), which is publicly disclosed from the NETGEAR Product Security Advisory page. We receive numerous emails through this channel, the overwhelming majority of which, on review, do not raise product security issues. When we do recognize that there is a security risk to our customers, we work diligently to address them in a timely manner, as we have done in this case since learning about it last Friday.
Security Advisory for VU 582384 knowledgebase article.
NETGEAR Product Security Advisory page.
Hey Gomes! How many times are you using the edit button? I just opened my email program and there were 31 notices of replies to this thread.
Unfiltered1 wrote:Hey Gomes! How many times are you using the edit button? I just opened my email program and there were 31 notices of replies to this thread.
Indeed, this guy does not know how to use as forum. He is practically the only one why creates multiple posts of one message.
But rather than being unkind, let me add a suggestion.
This forum is very good at remembering what you are writing.
If you make a mistake and close a window, or do something equally silly, or even Windows crashes, you can pick up where things went wrong.
Go back to the message you were answering and the forum software will ask if you want to reload your message. It misses very little if anything.
PS Apologies for going off topic, but it might help to preserve the collective sanity.
I must agree with you, I definitely don't know how to use THIS forum, I'm not used to a forum where at every single edit you will end up flooding the users mailboxes, I never seen it happening on ANY other forum used before, Xenforo, Vbuletim, PHPBB, MyBB, etc.
Here's the issue, I usually remember later to add extra content to the initial post or simply notice that I need to fix something on the text (English is not my native language), I also noticed that this forum software does only allows the user to edit the post in 5-10m after posting, then the option will be removed, when that happens you will not be able to fix anything anymore or add any extra content to your previous post, which is something new to me, so the way it is it's the way it will end up, never seen anything like that.
Thank you for your post information.
hggomes wrote:
I must agree with you, I definitely don't know how to use THIS forum, I'm not used to a forum where at every single edit you will end up flooding the users mailboxes, I never seen it happening on ANY other forum used before, Xenforo, Vbuletim, PHPBB, MyBB, etc.
I revise posts too (often I do see mistakes afterwards that I want to fix). And English is my native language (if you think American is actually English).
I agree the forum software is largely to blame.
Personally I think we all need to live with the forum limitations, and having more active participants from various countries is a good thing (even if we have to turn off email subscriptions to stop floods).
Thank you for your reply information StephenB.
Out of curiosity, anyone knows what Forum software is this? Own developed by Netgear?
I only see this:
hggomes wrote:Here's the issue, I usually remember later to add extra content to the initial post or simply notice that I need to fix something on the text (English is not my native language),
You do quite well with English and you needn't apologize for an occasional error in spelling, etc.
No problem, thank you.
hggomes wrote:
that this forum software does only allows the user to edit the post in 5-10m after posting, then the option will be removedThat is not my experience.
You can edit older messages.
The ability to do so eventually goes away. Probably when there have been replies. To me that makes sense.
Editing messages that people have seen and answered leads to confusion.
Not really, even when was not replied yet but anyway...
Imagine this scenario, most of the times when people create the first post with information wish eventually needs to be updated like for example a new FW version, that's something impossible to create in this forum.
Here's a good example of it:
https://www.snbforums.com/threads/asus-routers-cfe-dumps-collection.17793/
