CVE-2002-1411 Information

Description

Directory traversal vulnerability in update.dpgs in Duma Photo Gallery System (DPGS) 0.99.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the id parameter.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-06/0265.html http://www.iss.net/security_center/static/9414.php http://www.securityfocus.com/bid/5081