Ip3 Networks : Security Vulnerabilities, CVEs,
The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess database file has world readable and writable permissions, which allows local users to view sensitive information and modify data.
Max CVSS
3.6
EPSS Score
0.04%
Published
2006-04-26
Updated
2018-10-18
na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has a default username of admin and a default password of admin.
Max CVSS
7.5
EPSS Score
0.55%
Published
2006-04-26
Updated
2018-10-18
na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 allows local users to gain Unix shell access via "`" (backtick) characters in the appliance's command line interface (CLI).
Max CVSS
4.6
EPSS Score
0.04%
Published
2006-04-26
Updated
2018-10-18
SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.
Max CVSS
7.5
EPSS Score
0.46%
Published
2004-12-31
Updated
2018-10-19
4 vulnerabilities found