Vulnerabilities > CVE-2006-2045 - Local vulnerability in IP3 Networks IP3 Netaccess 75 4.0.34Firmware
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess database file has world readable and writable permissions, which allows local users to view sensitive information and modify data.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 1 |
References
- http://secunia.com/advisories/19818
- http://www.securityfocus.com/archive/1/432007/100/0/threaded
- http://www.securityfocus.com/bid/17698
- http://www.vupen.com/english/advisories/2006/1540
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26109
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26110