CVE-2008-1111 - CVE Reference - Advisories

CVE Reference: CVE-2008-1111

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-1111

Description: mod_cgi in lighttpd 1.4.18 sends the source code of CGI scripts instead of a 500 error when a fork failure occurs, which might allow remote attackers to obtain sensitive information.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/41008 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00005.html SAID Secunia Advisory: SA29209 Secunia Advisory: SA29268 Secunia Advisory: SA29275 Secunia Advisory: SA29235 Secunia Advisory: SA29318 Secunia Advisory: SA29622 MISC http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0106 GENTOO http://security.gentoo.org/glsa/glsa-200803-10.xml FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1513 CONFIRM http://trac.lighttpd.net/trac/changeset/2107 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/489465/100/0/threaded BID 28100

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Red Hat update for vsftpd

2.	Red Hat update for rdesktop

3.	Red Hat update for rdesktop

4.	Red Hat update for coreutils

5.	Red Hat update for kernel

6.	Red Hat update for nss_ldap

7.	Red Hat update for mysql

8.	Atom PhotoBlog "photoId" SQL Injection Vulnerability

9.	OpenBSD BIND Query Port DNS Cache Poisoning

10.	Red Hat update for kernel