CVE-2005-2169 Information

Description

Directory traversal vulnerability in source.php in Quick & Dirty PHPSource Printer 1.1 and earlier allows remote attackers to read arbitrary files via .../…//\ sequences in the file parameter which are reduced to ../\ when PHPSource Printer uses a regular expression to remove ../\ sequences.

Reference

http://guff.szub.net/2005/07/04/quick-and-dirty-security/ http://secunia.com/advisories/15900 http://securitytracker.com/id?1014376