Closed
Description
When a user using ModSecurity for IIS tries to deny access to a reserved folder URL - the log indicates that it blocked the site successfully, but a 500-level error is always reported.
There are several other extensions that this effects too.
http://blog.onetechnical.com/2006/11/16/forbidden-file-and-folder-names-on-windows/