Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2045

Overview

Vulnerability Score 3.6 3.6
CVE Id CVE-2006-2045
Last Modified 07 Mar 2011 09:34:51
Published 26 Apr 2006 04:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-2045

Summary

The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess database file has world readable and writable permissions, which allows local users to view sensitive information and modify data.

Vulnerable Systems


References

VUPEN - ADV-2006-1540

BID - 17698

BUGTRAQ - 20060424 Multiple vulnerabilities in IP3 Networks 'NetAccess' NA75 appliance

XF - ip3-na75-database-file-permission(26110)

XF - ip3-na75-shadow-file-permission(26109)

SECUNIA - 19818


Last Updated: 27 May 2016 10:42:18