Security Advisory

CVE-2006-0814

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-03-06 21:00:00

Last updated 2024-08-07 16:48:56

Assigner mitre

State PUBLISHED

Description

response.c in Lighttpd 1.4.10 and possibly previous versions, when run on Windows, allows remote attackers to read arbitrary source code via requests that contain trailing (1) "." (dot) and (2) space characters, which are ignored by Windows, as demonstrated by PHP files.

← Browse all CVEs View on cve.org ↗