Published: 31/12/2004 Updated: 19/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote malicious users to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ip3 networks ip3 netaccess - wireless hotspots
ip3 networks ip3 netaccess
ip3 networks ip3 netaccess - hospitality

source: wwwsecurityfocuscom/bid/9858/info The IP3 NetAccess Appliance is reported prone to a remote SQL-injection vulnerability This issue is due to the application's failure to properly sanitize user input This issue may allow an attacker to gain full control of the appliance through the network-administration interface The attacker ...

NVD-CWE-Other http://www.securityfocus.com/bid/9858 https://exchange.xforce.ibmcloud.com/vulnerabilities/26106 http://www.securityfocus.com/archive/1/432007/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/23808/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-2326

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect