response.c in Lighttpd 1.4.10 and possibly previous versions, when run on Windows, allows remote attackers to read arbitrary source code via requests that contain trailing (1) "." (dot) and (2) space characters, which are ignored by Windows, as demonstrated by PHP files.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-03-06T21:00:00
Updated: 2018-10-18T14:57:01
Reserved: 2006-02-21T00:00:00
Link: CVE-2006-0814
JSON object: View
NVD Information
Status : Modified
Published: 2006-03-06T21:02:00.000
Modified: 2018-10-18T16:29:10.397
Link: CVE-2006-0814
JSON object: View
Redhat Information
No data.
CWE