CVE-2005-3123

Directory traversal vulnerability in GNUMP3D before 2.9.6 allows remote attackers to read arbitrary files via crafted sequences such as "/.//..//////././", which is collapsed into "/.././" after ".." and "//" sequences are removed.

Date published : 2005-10-30

http://www.securityfocus.com/bid/15228

http://www.debian.org/security/2005/dsa-877