CVE-2000-0208 Information

Description

The htdig (ht://Dig) CGI program htsearch allows remote attackers to read arbitrary files by enclosing the file name with backticks (`) in parameters to htsearch.

Reference

http://www.securityfocus.com/bid/1026