CVE-2001-1266

Directory traversal vulnerability in Doug Neal’s HTTPD Daemon (DNHTTPD) before 0.4.1 allows remote attackers to view arbitrary files via a .. (dot dot) attack using the dot hex code ‘%2E’.

Date published : 2002-06-25

http://dnhttpd.sourceforge.net/changelog.html

http://archives.neohapsis.com/archives/apps/freshmeat/2001-07/0002.html