Files for CVE-2007-1860: mod_jk double-decoding
This exercise covers the exploitation of CVE-2007-1860. This vulnerability allows an attacker to gain access to inaccessible pages using crafted requests. This is a common trick that a lot of testers miss.
ISO
The ISO for this exercise can be downloaded by clicking here (191MB). You can use this file in your favorite virtualization software and boot the virtual machine from it.