CVE-2004-2326

IP3 Networks NetAccess Appliance <3.1.18b13 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in IP3 Networks NetAccess Appliance before firmware 3.1.18b13 allows remote attackers to bypass authentication via the (1) login or (2) password. NOTE: this issue was later reported to also affect firmware 4.0.34.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Syam Yanuar · textremotehardware

https://www.exploit-db.com/exploits/23808

View Code ZIP pw:eip

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/26106

Exploit, Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/9858

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/432007/100/0/threaded

Scores

EPSS 0.0107

EPSS Percentile 78.0%

Details

Status published

Products (3)

ip3_networks/ip3_netaccess

ip3_networks/ip3_netaccess_-_hospitality

ip3_networks/ip3_netaccess_-_wireless_hotspots

Published Dec 31, 2004

Tracked Since Feb 18, 2026