CyberSec.Space Logo
Back to CVE Browser

CVE-2005-1558

HIGH
7.5
CVSS Severity Score
EPSS Score0.0630%
EPSS Percentile44.02th
PublishedMay 11, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

The web module in Neteyes Nexusway allows remote attackers to bypass authentication and gain administrator privileges by setting the cyclone500_auth cookie.

Affected Platforms (CPE)

πŸ“¦
Neteyes

Nexusway

= 805

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/fulldisclosure/2005-05/0225.html
πŸ”— http://marc.info/?l=bugtraq&m=111585017832066&w=2
πŸ”— http://secunia.com/advisories/15150
πŸ”— http://www.osvdb.org/16446
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/20554
πŸ”— http://archives.neohapsis.com/archives/fulldisclosure/2005-05/0225.html
πŸ”— http://marc.info/?l=bugtraq&m=111585017832066&w=2
πŸ”— http://secunia.com/advisories/15150

Related Vulnerabilities

CVE-2005-155910.0

The web module in Neteyes Nexusway allows remote attackers to execute arbitrary commands via hex-encoded shell metacharacters in t...

CVE-2005-156010.0

The SSH module in Neteyes Nexusway allows remote attackers to execute arbitrary commands via shell metacharacters in arguments to ...

CVE-2005-129910.0

The inserter.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.

CVE-2005-103710.0

Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges.