CVE-2004-1496 Information

Description

Directory traversal vulnerability in Web Forums Server 1.6 and 2.0 Power Pack allows remote attackers to read arbitrary files via a URL containing (1) ..\\ (dot dot backslash) (2) ../\ (dot dot slash) (3) /2E2E5C\ (encoded dot dot backslash) or (4) \2E2E2F\ (encoded dot dot slash).

Reference

http://marc.info/?l=bugtraq&m=109943267328552&w=2