← Back

CVE-2006-0814

nvd nist
Published: Mar 6, 2006Modified: Apr 16, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

response.c in Lighttpd 1.4.10 and possibly previous versions, when run on Windows, allows remote attackers to read arbitrary source code via requests that contain trailing (1) "." (dot) and (2) space characters, which are ignored by Windows, as demonstrated by PHP files.

Affected (49)

Products: Lighttpd: Lighttpd
Lighttpd
1 product
Lighttpd
Configuration A
49 vulnerable
Vulnerable SoftwareAffected Versions
Lighttpd
Lighttpd
Version 1.0.2
Lighttpd
Version 1.0.3
Lighttpd
Version 1.1.0
Lighttpd
Version 1.1.1
Lighttpd
Version 1.1.2
Lighttpd
Version 1.1.3
Lighttpd
Version 1.1.4
Lighttpd
Version 1.1.5
Lighttpd
Version 1.1.6
Lighttpd
Version 1.1.7
Lighttpd
Version 1.1.8
Lighttpd
Version 1.1.9
Lighttpd
Version 1.2.0
Lighttpd
Version 1.2.1
Lighttpd
Version 1.2.2
Lighttpd
Version 1.2.3
Lighttpd
Version 1.2.4
Lighttpd
Version 1.2.5
Lighttpd
Version 1.2.6
Lighttpd
Version 1.2.7
Lighttpd
Version 1.2.8
Lighttpd
Version 1.3.0
Lighttpd
Version 1.3.10
Lighttpd
Version 1.3.11
Lighttpd
Version 1.3.12
Lighttpd
Version 1.3.13
Lighttpd
Version 1.3.14
Lighttpd
Version 1.3.15
Lighttpd
Version 1.3.16
Lighttpd
Version 1.3.1
Lighttpd
Version 1.3.2
Lighttpd
Version 1.3.3
Lighttpd
Version 1.3.4
Lighttpd
Version 1.3.5
Lighttpd
Version 1.3.6
Lighttpd
Version 1.3.7
Lighttpd
Version 1.3.8
Lighttpd
Version 1.3.9
Lighttpd
Version 1.4.0
Lighttpd
Version 1.4.10
Lighttpd
Version 1.4.1
Lighttpd
Version 1.4.2
Lighttpd
Version 1.4.3
Lighttpd
Version 1.4.4
Lighttpd
Version 1.4.5
Lighttpd
Version 1.4.6
Lighttpd
Version 1.4.7
Lighttpd
Version 1.4.8
Lighttpd
Version 1.4.9

References (20)

Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.