• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

IP3 Networks IP3 NetAccess Appliance SQL Injection Vulnerability

Solution:
This issue has been fixed in firmware version 3.1.18b13.

Update: reports indicate that this issue has resurfaced at some point. Version 4.0.34 of the firmware is also susceptible to this issue.

The reporter of this issue states that fixes are available to address this and other vulnerabilities. Users are encouraged to contact the vendor for further information on obtaining and applying fixes. For support, see the following URI:

http://www.ip3.com/supportoverview.htm