CVE-2009-4531 Information

Description

httpdx 1.4.4 and earlier allows remote attackers to obtain the source code for a web page by appending a . (dot) character to the URI.

Reference

http://freetexthost.com/eiyfyt0km5 http://packetstormsecurity.org/0910-exploits/httpdx-disclose.txt http://pocoftheday.blogspot.com/2009/10/httpdx-144-remote-arbitrary-source.html http://secunia.com/advisories/37013 http://www.osvdb.org/58857 https://exchange.xforce.ibmcloud.com/vulnerabilities/53733