NaviCOPA Web Server Source Code Disclosure Vulnerability

Summary
The host is running NaviCOPA Web Server and is prone to Source Code Disclosure vulnerability.
Impact
Successful exploitation will allow remote attackers to display the source code of arbitrary files (e.g. PHP) instead of an expected HTML response. Impact Level: Application
Solution
Upgrade to the NaviCOPA Web Server version 3.0.1.3 or later. For updates refer to http://www.navicopa.com/download.html
Insight
This issue is caused by an error when handling requests with the '%20' string appended to the file extension.
Affected
NaviCOPA Web Server version 3.0.1.2 and prior on windows.
References