The Apache web server for Win32 may provide access to restricted files when a . (dot) is appended to a requested URL.