Info

Disclosure

Mar 01, 2006

Discovery

Feb 15, 2006

Dates

Exploit

Unknown

Solution

Unknown

Description

Lighttpd contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker sends a URL request for a known .php file with "dot" and "space" characters appended to the file extension, which will disclose the requested file's source code resulting in a loss of confidentiality.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Confidentiality
Exploit: Exploit Public, Exploit Commercial
Disclosure: OSVDB Verified, Vendor Verified
OSVDB: Web Related

Solution

Upgrade to version 1.4.10a or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Jan Kneschke

Lighttpd

1.4.10 for Windows

References

Security Tracker: 1015703
Secunia Advisory ID: 18886
CVE ID: 2006-0814 (see also: NVD)
ISS X-Force ID: 24976
VUPEN Advisory: ADV-2006-0782
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-03/0011.html
Generic Exploit URL: http://d2sec.com/products.htm
Vendor URL: http://lighttpd.net/
Other Advisory URL: http://secunia.com/secunia_research/2006-9/advisory/
Vendor Specific News/Changelog Entry: http://trac.lighttpd.net/trac/changeset/1005

Credit

Tan Chew Keong - vulnsecunia.com - Secunia Research

Direct URL: http://osvdb.org/23542