CVE-2001-0404 Information

Description

Directory traversal vulnerability in JavaServer Web Dev Kit (JSWDK) 1.0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP request to the WEB-INF directory.

Reference

http://marc.info/?l=bugtraq&m=98583089425166&w=2