Researchers at Palo Alto Networks have found vulnerabilities in the LiteSpeed Web Server that can be used to completely control a target server.
The security flaws were found during an audit of OpenLiteSpeed, the open source variant of LiteSpeed Technologies’ performance-focused web server. The vulnerabilities affect both versions, but they have been fixed with the introduction of OpenLiteSpeed 1.7.16.1 and LiteSpeed 6.0.12. Popular web server LiteSpeed is used by 1.9 million internet-facing instances, according to an analysis by Palo Alto Networks, and has a 2% market share. However, other sources claim it has a much larger market share.
The security company’s researchers’ findings of vulnerabilities can be used to compromise the targeted web server and run arbitrary code with elevated privileges.
Also Read: Strategies to Choose the Right Cybersecurity Risk Framework
Read More : LiteSpeed Vulnerabilities Can Lead to Complete Web Server Takeover
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
