Main Vulnerability Database Exploits ID:5151 - Exploit for Improper Privilege Management in OpenLiteSpeed

ID:5151 - Exploit for Improper Privilege Management in OpenLiteSpeed

Published: February 12, 2021

Vulnerability identifier: #VU50660

Vulnerability risk: Medium

CVE-ID: N/A

CWE-ID: CWE-269

Exploitation vector: Remote access

Vulnerable software:
OpenLiteSpeed

Link to public exploit:

https://packetstormsecurity.com/files/download/161374/openlsws178-exec.txt

Vulnerability description

The vulnerability allows a remote user to escalate privileges.

The vulnerability exists due to improper privilege management. A remote administrator can use the extUser or extGroup parameters to gain sudo access and escalate privileges on the system.

Remediation

Install update from vendor's website.

ID:5151 - Exploit for Improper Privilege Management in OpenLiteSpeed

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human