CVE-2002-2144 Information

Description

Directory traversal vulnerability in BearShare 4.0.5 and 4.0.6 allows remote attackers to read files outside of the web root by hex-encoding the /\ (forward slash) or .\ (dot) characters.

Reference

http://online.securityfocus.com/archive/1/294078 http://www.iss.net/security_center/static/10240.php http://www.securityfocus.com/bid/5888