CVE-2009-3544 Information

Description

Xerver HTTP Server 4.32 allows remote attackers to obtain the source code for a web page via an HTTP request with the addition of ::$DATA after the HTML file name.

Reference

http://osvdb.org/58104 http://secunia.com/advisories/36681 http://www.exploit-db.com/exploits/9649