CVE-2002-1966 Information

Description

Directory traversal vulnerability in magiccard.cgi in My Postcards Platinum 5.0 and 6.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the page parameter.

Reference

http://packetstormsecurity.nl/0206-exploits/magiccard_vuln.txt http://www.securiteam.com/unixfocus/5IP0G2K7FQ.html http://www.securityfocus.com/bid/5029