LiteSpeed Web Server Source Code Information Disclosure Vulnerability Network Vulnerability

Summary

LiteSpeed Web Server is prone to a vulnerability that lets attackers access source code files. An attacker can exploit this vulnerability to retrieve certain files from the vulnerable computer in the context of the webserver process. Information obtained may aid in further attacks. LiteSpeed Web Server versions prior to 4.0.15 are affected.

Solution

Updates are available. Please see the references for more information.

References

http://www.litespeedtech.com
https://www.securityfocus.com/bid/40815

Updated on 2017-03-28

Severity

Classification

CVE CVE-2010-2333

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

bozotic HTTP server Information Disclosure Vulnerability
bozohttpd Security Bypass Vulnerability
IBM WebSphere Application Server (WAS) Multiple Vulnerabilities 01 - March 2011
BadBlue invalid null byte vulnerability
Acritum Femitter Server URI Directory Traversal Vulnerability

Take action and discover your vulnerabilities