Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1559

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2005-1559
Last Modified 05 Sep 2008 04:49:28
Published 11 May 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1559

Summary

The web module in Neteyes Nexusway allows remote attackers to execute arbitrary commands via hex-encoded shell metacharacters in the ip parameter for (1) nslookup.cgi or (2) ping.cgi.

Vulnerable Systems


References

SECUNIA - 15150

XF - nexusway-web-command-execution(20557)

OSVDB - 16449

OSVDB - 16448

BUGTRAQ - 20050511 [Scan Associates Advisory] Neteyes Nexusway multiple vulnerability

FULLDISC - 20050510 [Scan Associates Advisory] Neteyes Nexusway multiple vulnerability


Last Updated: 27 May 2016 10:40:12