CVE-2005-0950 - Ananthous Vices

Description

Directory traversal vulnerability in FastStone 4in1 Browser 1.2 allows remote attackers to read arbitrary files via a (1) … (triple dot) or (2) ..\ (dot dot backslash) in the URL.

Reference

http://www.autistici.org/fdonato/advisory/FastStone4in1Browser1.2-adv.txt http://www.securityfocus.com/bid/12937 http://secunia.com/advisories/14743 http://securitytracker.com/id?1013596 http://marc.info/?l=bugtraq&m=111213034206802&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/19900