CVE-2005-1939

Directory traversal vulnerability in Ipswitch WhatsUp Small Business 2004 allows remote attackers to read arbitrary files via ".." (dot dot) sequences in a request to the Report service (TCP 8022).

Date published : 2006-01-14

http://www.securityfocus.com/bid/15291

http://cirt.dk/advisories/cirt-40-advisory.pdf