Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Beta Programs
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
info
discussion
exploit
solution
references
Lighttpd 'mod_userdir' Case Sensitive Comparison Security Bypass Vulnerability
Solution:
The vendor has released lighttpd 1.4.20 to address this issue. Please see the references for more information.
Debian Linux 4.0 arm
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian lighttpd-mod-cml_1.4.13-4etch11_arm.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-c ml_1.4.13-4etch11_arm.deb
Debian lighttpd-mod-magnet_1.4.13-4etch11_arm.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m agnet_1.4.13-4etch11_arm.deb
Debian lighttpd-mod-mysql-vhost_1.4.13-4etch11_arm.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m ysql-vhost_1.4.13-4etch11_arm.deb
Debian lighttpd-mod-trigger-b4-dl_1.4.13-4etch11_arm.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-t rigger-b4-dl_1.4.13-4etch11_arm.deb
Debian lighttpd-mod-webdav_1.4.13-4etch11_arm.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch11_arm.deb
Debian lighttpd_1.4.13-4etch11_arm.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.1 3-4etch11_arm.deb
Debian Linux 4.0 powerpc
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian lighttpd-mod-cml_1.4.13-4etch11_powerpc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-c ml_1.4.13-4etch11_powerpc.deb
Debian lighttpd-mod-magnet_1.4.13-4etch11_powerpc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m agnet_1.4.13-4etch11_powerpc.deb
Debian lighttpd-mod-mysql-vhost_1.4.13-4etch11_powerpc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m ysql-vhost_1.4.13-4etch11_powerpc.deb
Debian lighttpd-mod-trigger-b4-dl_1.4.13-4etch11_powerpc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-t rigger-b4-dl_1.4.13-4etch11_powerpc.deb
Debian lighttpd-mod-webdav_1.4.13-4etch11_powerpc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch11_powerpc.deb
Debian lighttpd_1.4.13-4etch11_powerpc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.1 3-4etch11_powerpc.deb
Debian Linux 4.0 m68k
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian Linux 4.0 amd64
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian lighttpd-mod-cml_1.4.13-4etch11_amd64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-c ml_1.4.13-4etch11_amd64.deb
Debian lighttpd-mod-magnet_1.4.13-4etch11_amd64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m agnet_1.4.13-4etch11_amd64.deb
Debian lighttpd-mod-mysql-vhost_1.4.13-4etch11_amd64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m ysql-vhost_1.4.13-4etch11_amd64.deb
Debian lighttpd-mod-trigger-b4-dl_1.4.13-4etch11_amd64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-t rigger-b4-dl_1.4.13-4etch11_amd64.deb
Debian lighttpd-mod-webdav_1.4.13-4etch11_amd64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch11_amd64.deb
Debian lighttpd_1.4.13-4etch11_amd64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.1 3-4etch11_amd64.deb
Debian Linux 4.0 ia-32
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian lighttpd-mod-cml_1.4.13-4etch11_i386.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-c ml_1.4.13-4etch11_i386.deb
Debian lighttpd-mod-magnet_1.4.13-4etch11_i386.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m agnet_1.4.13-4etch11_i386.deb
Debian lighttpd-mod-mysql-vhost_1.4.13-4etch11_i386.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m ysql-vhost_1.4.13-4etch11_i386.deb
Debian lighttpd-mod-trigger-b4-dl_1.4.13-4etch11_i386.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-t rigger-b4-dl_1.4.13-4etch11_i386.deb
Debian lighttpd-mod-webdav_1.4.13-4etch11_i386.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch11_i386.deb
Debian lighttpd_1.4.13-4etch11_i386.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.1 3-4etch11_i386.deb
Debian Linux 4.0 hppa
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian lighttpd-mod-cml_1.4.13-4etch11_hppa.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-c ml_1.4.13-4etch11_hppa.deb
Debian lighttpd-mod-magnet_1.4.13-4etch11_hppa.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m agnet_1.4.13-4etch11_hppa.deb
Debian lighttpd-mod-mysql-vhost_1.4.13-4etch11_hppa.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m ysql-vhost_1.4.13-4etch11_hppa.deb
Debian lighttpd-mod-trigger-b4-dl_1.4.13-4etch11_hppa.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-t rigger-b4-dl_1.4.13-4etch11_hppa.deb
Debian lighttpd-mod-webdav_1.4.13-4etch11_hppa.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch11_hppa.deb
Debian lighttpd_1.4.13-4etch11_hppa.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.1 3-4etch11_hppa.deb
Debian Linux 4.0 sparc
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian lighttpd-mod-cml_1.4.13-4etch11_sparc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-c ml_1.4.13-4etch11_sparc.deb
Debian lighttpd-mod-magnet_1.4.13-4etch11_sparc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m agnet_1.4.13-4etch11_sparc.deb
Debian lighttpd-mod-mysql-vhost_1.4.13-4etch11_sparc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m ysql-vhost_1.4.13-4etch11_sparc.deb
Debian lighttpd-mod-trigger-b4-dl_1.4.13-4etch11_sparc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-t rigger-b4-dl_1.4.13-4etch11_sparc.deb
Debian lighttpd-mod-webdav_1.4.13-4etch11_sparc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch11_sparc.deb
Debian lighttpd_1.4.13-4etch11_sparc.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.1 3-4etch11_sparc.deb
Debian Linux 4.0 s/390
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian lighttpd-mod-cml_1.4.13-4etch11_s390.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-c ml_1.4.13-4etch11_s390.deb
Debian lighttpd-mod-magnet_1.4.13-4etch11_s390.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m agnet_1.4.13-4etch11_s390.deb
Debian lighttpd-mod-mysql-vhost_1.4.13-4etch11_s390.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m ysql-vhost_1.4.13-4etch11_s390.deb
Debian lighttpd-mod-trigger-b4-dl_1.4.13-4etch11_s390.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-t rigger-b4-dl_1.4.13-4etch11_s390.deb
Debian lighttpd-mod-webdav_1.4.13-4etch11_s390.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch11_s390.deb
Debian lighttpd-mod-webdav_1.4.13-4etch3_s390.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch3_s390.deb
Debian lighttpd_1.4.13-4etch11_s390.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.1 3-4etch11_s390.deb
Debian Linux 4.0 alpha
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian Linux 4.0
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian Linux 4.0 mipsel
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian Linux 4.0 ia-64
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian lighttpd-mod-cml_1.4.13-4etch11_ia64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-c ml_1.4.13-4etch11_ia64.deb
Debian lighttpd-mod-magnet_1.4.13-4etch11_ia64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m agnet_1.4.13-4etch11_ia64.deb
Debian lighttpd-mod-mysql-vhost_1.4.13-4etch11_ia64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m ysql-vhost_1.4.13-4etch11_ia64.deb
Debian lighttpd-mod-trigger-b4-dl_1.4.13-4etch11_ia64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-t rigger-b4-dl_1.4.13-4etch11_ia64.deb
Debian lighttpd-mod-webdav_1.4.13-4etch11_ia64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch11_ia64.deb
Debian lighttpd_1.4.13-4etch11_ia64.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.1 3-4etch11_ia64.deb
Debian Linux 4.0 mips
Debian lighttpd-doc_1.4.13-4etch11_all.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-doc_1 .4.13-4etch11_all.deb
Debian lighttpd-mod-cml_1.4.13-4etch11_mips.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-c ml_1.4.13-4etch11_mips.deb
Debian lighttpd-mod-magnet_1.4.13-4etch11_mips.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m agnet_1.4.13-4etch11_mips.deb
Debian lighttpd-mod-mysql-vhost_1.4.13-4etch11_mips.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-m ysql-vhost_1.4.13-4etch11_mips.deb
Debian lighttpd-mod-trigger-b4-dl_1.4.13-4etch11_mips.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-t rigger-b4-dl_1.4.13-4etch11_mips.deb
Debian lighttpd-mod-webdav_1.4.13-4etch11_mips.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd-mod-w ebdav_1.4.13-4etch11_mips.deb
Debian lighttpd_1.4.13-4etch11_mips.deb
http://security.debian.org/pool/updates/main/l/lighttpd/lighttpd_1.4.1 3-4etch11_mips.deb
lighttpd lighttpd 1.4.1
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.10
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.10
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.11
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.12
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.13
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.14
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.15
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.16
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.17
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.18
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.2
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.3
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.4
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.5
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.6
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.7
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.8
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
lighttpd lighttpd 1.4.9
lighttpd lighttpd-1.4.20.tar.gz
http://www.lighttpd.net/download/lighttpd-1.4.20.tar.gz
Privacy Statement
Copyright 2008, SecurityFocus
