| Max CVSS | 7.5 | Min CVSS | 3.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2004-2326 | 7.5 |
SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.
|
19-10-2018 - 15:30 | 31-12-2004 - 05:00 | |
| CVE-2006-2044 | 7.5 |
na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has a default username of admin and a default password of admin.
|
18-10-2018 - 16:37 | 26-04-2006 - 20:06 | |
| CVE-2006-2045 | 3.6 |
The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess database file has world readable and writable permission
|
18-10-2018 - 16:37 | 26-04-2006 - 20:06 | |
| CVE-2006-2043 | 4.6 |
na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 allows local users to gain Unix shell access via "`" (backtick) characters in the appliance's command line interface (CLI).
|
18-10-2018 - 16:37 | 26-04-2006 - 20:06 |