CVE-2005-4147
The TCLHTTPd service in Lyris ListManager before 8.9b allows remote attackers to obtain source code for arbitrary .tml TCL files via 1 a request with a trailing null byte %00, which might also require 2 an authentication bypass step that involves a username with a trailing "@" characters...