CVE-2001-0305 Information

Description

Directory traversal vulnerability in store.cgi in Thinking Arts ES.One package allows remote attackers to read arbitrary files via a .. (dot dot) in the StartID parameter.

Reference

http://archives.neohapsis.com/archives/bugtraq/2001-02/0324.html http://www.securityfocus.com/bid/2385