CVE-2004-2170 Information

Description

Directory traversal vulnerability in sample_showcode.html in Caravan 2.00/03d and earlier allows remote attackers to read arbitrary files via the fname parameter.

Reference

http://members.lycos.co.uk/r34ct/main/Caravan/Caravan.txt http://securitytracker.com/id?1008913 http://www.osvdb.org/3787 http://www.secunia.com/advisories/10763/ http://www.securityfocus.com/bid/9555 https://exchange.xforce.ibmcloud.com/vulnerabilities/15004