This attack should only work on the Windows version of Cherokee Web Server, as it references a DOS-style special device, AUX.
This attack can also be launched through a browser as follows: http://www.example.com/AUX