Authentication Bypass via SQL Injection in IP3 Networks NetAccess Appliance

Authentication Bypass via SQL Injection in IP3 Networks NetAccess Appliance

CVE-2004-2326 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.

Learn more about our Network Penetration Testing.