CVE-2005-1439 Information

Description

Directory traversal vulnerability in attachments.php in osTicket allows remote attackers to read arbitrary files via .. sequences in the file parameter.

Reference

http://secunia.com/advisories/15216 http://www.gulftech.org/?node=research&article_id=00071-05022005 http://www.osvdb.org/16279