{
  "modified": "2025-08-09T19:01:29Z",
  "published": "2005-06-17T04:00:00Z",
  "id": "CVE-2005-2008",
  "details": "Yaws Webserver 1.55 and earlier allows remote attackers to obtain the source code for yaws scripts via a request to a yaw script with a trailing %00 (null).",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/15740"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.osvdb.org/17375"
    },
    {
      "type": "ADVISORY",
      "url": "http://yaws.hyber.org/yaws-1.55_to_1.56.patch"
    },
    {
      "type": "FIX",
      "url": "http://secunia.com/advisories/15740"
    },
    {
      "type": "FIX",
      "url": "http://yaws.hyber.org/yaws-1.55_to_1.56.patch"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=111927717726371\u0026w=2"
    }
  ]
}