CVE-2001-0557

T. Hauck Jana Webserver 1.46 and earlier allows a remote attacker to view arbitrary files via a ‘..’ (dot dot) attack which is URL encoded (%2e%2e).

Date published : 2001-07-27

http://www.securityfocus.com/bid/2703

http://archives.neohapsis.com/archives/bugtraq/2001-05/0086.html