[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Neatgear just created http://kb.netgear.com/000036386/CVE-2016-582384



Looks like this is for Netgear VU# 582384.


If you put in "http://kb.netgear.com/000036386/", the page you linked is what loads. (In fact, it seems anything after the /000036386/ directory will load the page for VU# 582384 at the URL below.)


My guess is they are using some unfortunate templating and redirecting that allows them to update the URL without breaking anything. From where did you get that URL originally?






From: <owner-cve-editorial-board-list@lists.mitre.org> on behalf of Kurt Seifried <kseifried@redhat.com>
Date: Tuesday, December 13, 2016 at 10:48
To: cve-cna-list <cve-cna-list@lists.mitre.org>, cve-editorial-board-list <cve-editorial-board-list@lists.mitre.org>
Subject: Neatgear just created http://kb.netgear.com/000036386/CVE-2016-582384


Now technically they didn't list the CVE in the actual document, but they made it the document URL name.



I'm pretty sure this isn't kosher.  


Kurt Seifried -- Red Hat -- Product Security -- Cloud
PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Red Hat Product Security contact: 

Page Last Updated or Reviewed: December 14, 2016