CVE-2007-3365
MyServer 0.8.9 and earlier does not properly handle uppercase characters in filename extensions, which allows remote attackers to obtain sensitive information (script source code) via a modified extension, as demonstrated by post.mscgI.
Date published : 2007-06-22
http://www.securityfocus.com/bid/24571
http://www.securityfocus.com/archive/1/471914/100/0/threaded