CVE-2013-0944
The web-based file-restore interface in EMC Avamar Server before 6.1.0 allows remote authenticated users to read arbitrary files via a crafted URL.
Date published : 2013-05-03
http://archives.neohapsis.com/archives/bugtraq/2013-05/0012.html