• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Lighttpd Remote Script Disclosure Vulnerability


The 'lighttpd' webserver is prone to an information-disclosure vulnerability. An attacker may obtain the source code of script files.

Scripts may contain sensitive information that may aid in further attacks launched against the target computer.

Versions prior to 1.4.10a of lighttpd for Windows are vulnerable.