Release DateJan 05, 2012 |
Severitymedium |
ImpactInformation Disclosure: Remote attackers can gain sensitive information from vulnerable systems. |
DescriptionThis indicates an attack attempt against an Information Disclosure vulnerability in LiteSpeed Web Server.This issue is caused by an error when handling a URL offered by the user. It may allow remote attackers to get the source code of the requested web page by sending a crafted HTTP request. |
Affected ProductsLiteSpeed Web Server versions prior to 4.0.15 |
Recommended ActionsApply patch available from the website.http://www.litespeedtech.com/latest/litespeed-web-server-4.0.15-released.html |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2010-2333 |
Reference/shttp://www.securityfocus.com/bid/40815 (BugTraq) |
