CVE-2008-1564
Directory traversal vulnerability in Dan Costin File Transfer before 1.2f allows remote attackers to read arbitrary files via a ".." (dot dot backslash) in the filename.
Date published : 2008-03-31
http://www.securityfocus.com/bid/28453
http://sourceforge.net/project/shownotes.php?group_id=178021&release_id=586923