AN HTTPD shows an error page if a client sends a request containing ":" in the URI field. The problem occurs due to the fact that this URI is injected into the error page without being sanitized.
vulners.com/securityvulns/securityvulns:doc:3692