CVE-2006-2045 : The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess

The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess database file has world readable and writable permissions, which allows local users to view sensitive information and modify data.

Published 2006-04-26 20:06:00

Updated 2018-10-18 16:37:50

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2006-2045

Ip3 Networks » Ip3 Netaccess 75 » Version: 4.0.34 Firmware
cpe:2.3:h:ip3_networks:ip3_netaccess_75:4.0.34_firmware:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2006-2045

EPSS FAQ

0.06%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 16 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2006-2045

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
3.6	LOW	AV:L/AC:L/Au:N/C:P/I:P/A:N	3.9	4.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: None

References for CVE-2006-2045

Jump to

Vulnerability Details : CVE-2006-2045

Products affected by CVE-2006-2045

Exploit prediction scoring system (EPSS) score for CVE-2006-2045

CVSS scores for CVE-2006-2045

References for CVE-2006-2045