CVE-2008-1564 Information

Description

Directory traversal vulnerability in Dan Costin File Transfer before 1.2f allows remote attackers to read arbitrary files via a ..\\ (dot dot backslash) in the filename.

Reference

http://secunia.com/advisories/29540 http://sourceforge.net/project/shownotes.php?group_id=178021&release_id=586923 http://sourceforge.net/tracker/index.php?func=detail&aid=1829601&group_id=178021&atid=883559 http://www.securityfocus.com/bid/28453 https://exchange.xforce.ibmcloud.com/vulnerabilities/41489