CVE-2004-1376 Information

Description

Directory traversal vulnerability in Microsoft Internet Explorer 5.01 5.5 and 6.0 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.

Reference

http://marc.info/?l=bugtraq&m=110461358930103&w=2 http://secunia.com/advisories/13704 http://www.7a69ezine.org/node/view/176