CVE-2006-4110
Apache HTTP Server 2.2.2 - Source Code Disclosure via Case-Insensitive ScriptAlias Bypass
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-4110. PoCs published by Susam Pal.
AI-analyzed exploit summary The provided text describes an information-disclosure vulnerability in Apache 2.2.2 for Windows, where exceptional conditions may allow retrieval of script source code. No actual exploit code is present, only a description and reference URL.
Description
Apache 2.2.2, when running on Windows, allows remote attackers to read source code of CGI programs via a request that contains uppercase (or alternate case) characters that bypass the case-sensitive ScriptAlias directive, but allow access to the file on case-insensitive file systems.
Exploits (1)
The provided text describes an information-disclosure vulnerability in Apache 2.2.2 for Windows, where exceptional conditions may allow retrieval of script source code. No actual exploit code is present, only a description and reference URL.