CVE-2007-5473

2007-10-18T18:17:00
ID CVE-2007-5473
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:33:00

Description

StaticFileHandler.cs in System.Web in Mono before 1.2.5.2, when running on Windows, allows remote attackers to obtain source code of sensitive files via a request containing a trailing (1) space or (2) dot, which is not properly handled by XSP.