CVE-2005-0507 - Assignable Sash

Description

Directory traversal vulnerability in SD Server 4.0.70 and earlier allows remote attackers to read arbitrary files via .. sequences in an HTTP request.

Reference

http://secunia.com/advisories/14365 http://www.gdsoftware.dk/ http://marc.info/?l=bugtraq&m=110910535122762&w=2 http://marc.info/?l=full-disclosure&m=110901639709476&w=2