Description

mod_cgi in lighttpd 1.4.18 sends the source code of CGI scripts instead of a 500 error when a fork failure occurs, which might allow remote attackers to obtain sensitive information.

Remediation

References

CVE-2008-1111

Related Vulnerabilities

MySQL CVE-2017-3452 Vulnerability (CVE-2017-3452)

WordPress 4.7.x Cross-Site Request Forgery (4.7 - 4.7.12)

Joomla! Core Security Bypass (1.6.2 - 3.9.10)

MySQL CVE-2023-21883 Vulnerability (CVE-2023-21883)

WordPress 5.3.x Multiple Vulnerabilities (5.3 - 5.3.15)

Severity

Medium

Classification

CVE-2008-1111 CWE-200

Tags

Missing Update Known Vulnerabilities