virus logo Intrusion Prevention

Litespeed.Web.Server.CSRF

description-logoDescription

This indicates an attack attempt against a cross-site request-forgery vulnerability in Litespeed Web server.
An attacker may exploit this to cause the server to perform certain actions in the context of an authorized user's session, and gain unauthorized access to the affected application.

affected-products-logoAffected Products

LiteSpeed Web Server 4.0.12

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the latest update from the vendor.
http://www.litespeedtech.com/litespeed-web-server-downloads.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-12-02 16.972

References

http://www.exploit-db.com/exploits/11503/
ID 27162
Created Jul 06, 2011
Updated Dec 01, 2020
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS All
Affected App Other