CVE-2004-1231 - Contactual Route
Description
Directory traversal vulnerability in Gadu-Gadu allows remote attackers to read arbitrary files via .. (dot dot) sequences in a DCC connection with a CTCP packet that contains a 1 as the type and a 4 as the subtype.
Reference
http://www.man.poznan.pl/~security/gg-adv.txt http://marc.info/?l=bugtraq&m=110295777306493&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/18461