CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-1559

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1130%
EPSS Percentile3.44th
Published2005年5月11日
Last Modified2026年4月16日

Vulnerability Description

The web module in Neteyes Nexusway allows remote attackers to execute arbitrary commands via hex-encoded shell metacharacters in the ip parameter for (1) nslookup.cgi or (2) ping.cgi.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2005-May/033945.html
🔗 http://marc.info/?l=bugtraq&m=111585017832066&w=2
🔗 http://secunia.com/advisories/15150
🔗 http://www.osvdb.org/16448
🔗 http://www.osvdb.org/16449
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/20557
🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2005-May/033945.html
🔗 http://marc.info/?l=bugtraq&m=111585017832066&w=2

関連する脆弱性情報

CVE-2005-026010.0

Stack-based buffer overflow in the Discovery Service for BrightStor ARCserve Backup 11.1 and earlier allows remote attackers to ex...

CVE-2005-266910.0

Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows remote at...

CVE-2005-266810.0

Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before...

CVE-2005-070810.0

The sendfile system call in FreeBSD 4.8 through 4.11 and 5 through 5.4 can transfer portions of kernel memory if a file is truncat...