CVE-2002-1603

Name of the Vulnerable Software and Affected Versions GoAhead Web Server versions 2.1.7 and earlier

Description The issue allows remote attackers to obtain the source code of ASP files by appending specific characters to a URL, such as a /, ``, %2f (encoded /), %20 (encoded space), or %00 (encoded null) character. This results in the ASP source code being returned unparsed.

Recommendations For GoAhead Web Server versions 2.1.7 and earlier, update to a version later than 2.1.7 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.