LiteSpeed Web Server Null-Byte Handling Information Disclosure Vulnerability
BID:26163
Info
LiteSpeed Web Server Null-Byte Handling Information Disclosure Vulnerability
| Bugtraq ID: | 26163 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-5654 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 22 2007 12:00AM |
| Updated: | May 07 2015 05:34PM |
| Credit: | Tr3mbl3r discovered this issue. |
| Vulnerable: |
Lite Speed Technologies LiteSpeed Web Server 3.2.3 |
| Not Vulnerable: |
Lite Speed Technologies LiteSpeed Web Server 3.2.4 |
Discussion
LiteSpeed Web Server Null-Byte Handling Information Disclosure Vulnerability
LiteSpeed Web Server is prone to an information-disclosure vulnerability because it fails to adequately sanitize user-supplied input.
Attackers can exploit this issue to access potentially sensitive information that could aid in further attacks.
Versions prior to LiteSpeed Web Server 3.2.4 are vulnerable.
LiteSpeed Web Server is prone to an information-disclosure vulnerability because it fails to adequately sanitize user-supplied input.
Attackers can exploit this issue to access potentially sensitive information that could aid in further attacks.
Versions prior to LiteSpeed Web Server 3.2.4 are vulnerable.
Exploit / POC
LiteSpeed Web Server Null-Byte Handling Information Disclosure Vulnerability
Attackers can exploit this issue with a browser.
The following proof-of-concept URI is available:
http://www.example.com/index.php%00.txt
Attackers can exploit this issue with a browser.
The following proof-of-concept URI is available:
http://www.example.com/index.php%00.txt
Solution / Fix
LiteSpeed Web Server Null-Byte Handling Information Disclosure Vulnerability
Solution:
The vendor released LiteSpeed Web Server 3.2.4 to address this issue. Please see the references for more information.
Lite Speed Technologies LiteSpeed Web Server 3.2.3
Solution:
The vendor released LiteSpeed Web Server 3.2.4 to address this issue. Please see the references for more information.
Lite Speed Technologies LiteSpeed Web Server 3.2.3
-
Lite Speed Technologies lsws-3.2.4-std-i386-freebsd.tar.gz
http://www.litespeedtech.com/packages/3.0/lsws-3.2.4-std-i386-freebsd. tar.gz -
Lite Speed Technologies lsws-3.2.4-std-i386-freebsd6.tar.gz
http://www.litespeedtech.com/packages/3.0/lsws-3.2.4-std-i386-freebsd6 .tar.gz -
Lite Speed Technologies lsws-3.2.4-std-i386-linux.tar.gz
http://www.litespeedtech.com/packages/3.0/lsws-3.2.4-std-i386-linux.ta r.gz -
Lite Speed Technologies lsws-3.2.4-std-i386-osx.tar.gz
http://www.litespeedtech.com/packages/3.0/lsws-3.2.4-std-i386-osx.tar. gz -
Lite Speed Technologies lsws-3.2.4-std-i386-solaris.tar.gz
http://www.litespeedtech.com/packages/3.0/lsws-3.2.4-std-i386-solaris. tar.gz -
Lite Speed Technologies lsws-3.2.4-std-ppc-osx.tar.gz
http://www.litespeedtech.com/packages/3.0/http://www.litespeedtech.com /packages/3.0/lsws-3.2.4-std-ppc-osx.tar.gz -
Lite Speed Technologies lsws-3.2.4-std-sparc-solaris.tar.gz
http://www.litespeedtech.com/packages/3.0/lsws-3.2.4-std-sparc-solaris .tar.gz
References
LiteSpeed Web Server Null-Byte Handling Information Disclosure Vulnerability
References:
References:
- LiteSpeed Web Server 3.2.4 Released (LiteSpeed Technologies)
- Vendor Homepage (LiteSpeed Technologies)