CVE-2007-2897
CVE-2007-2897: Microsoft IIS 6.0 (server side) is vulnerable to a denial of service and potential information leakage via requests for a URI containing a DOS device name (example: /AUX/.aspx), effectively bypassing a blacklist for DOS device requests. The issue is triggered when a crafted request...