CVE-2008-1169
The connected documents confirm a directory traversal vulnerability in the embedded HTTP server of SCI Photo Chat Server 3.4.9 and earlier. The flaw allows remote attackers to read arbitrary files by supplying ".." or "../" in the GET command. Affected component: embedded HTTP server within SCI P...