Directory traversal
Directory traversal vulnerability in BitZipper 4.1.2 SR-1 and earlier allows remote attackers to create files in arbitrary directories via a .. dot dot in the filename of a file that is stored in a 1 RAR .rar, 2 TAR .tar, 3 ZIP .zip, 4 GZ .gz, or 5 JAR .jar archive...