CVE-2006-2045 | Vulnerability Database | Aqua Security

The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess database file has world readable and writable permissions, which allows local users to view sensitive information and modify data.

Affected Software

Name	Vendor	Start Version	End Version
Ip3_netaccess_75	Ip3_networks	4.0.34_firmware (including)	4.0.34_firmware (including)

References

http://secunia.com/advisories/19818
http://www.securityfocus.com/archive/1/432007/100/0/threaded
http://www.securityfocus.com/bid/17698
http://www.vupen.com/english/advisories/2006/1540
https://exchange.xforce.ibmcloud.com/vulnerabilities/26109
https://exchange.xforce.ibmcloud.com/vulnerabilities/26110
http://secunia.com/advisories/19818
http://www.securityfocus.com/archive/1/432007/100/0/threaded
http://www.securityfocus.com/bid/17698
http://www.vupen.com/english/advisories/2006/1540
https://exchange.xforce.ibmcloud.com/vulnerabilities/26109
https://exchange.xforce.ibmcloud.com/vulnerabilities/26110

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-2045
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html