2 matches found
CVE-2007-5473
The CVE-2007-5473 entry concerns Mono before 1.2.5.2. StaticFileHandler.cs in System.Web on Windows fails to properly handle a request trailing with a space or dot in XSP, allowing remote attackers to disclose source code of sensitive files. Affected component: Mono’s System.Web.StaticFileHandler...
CVE-2007-5473
StaticFileHandler.cs in System.Web in Mono before 1.2.5.2, when running on Windows, allows remote attackers to obtain source code of sensitive files via a request containing a trailing 1 space or 2 dot, which is not properly handled by XSP...