Directory traversal vulnerability in A1 HTTP server 1.0a allows remote malicious users to read arbitrary files via a .. (dot dot) in an HTTP GET request.
source: wwwsecurityfocuscom/bid/2436/info
It is possible for a remote user to gain read access to directories and files outside the web root Requesting a specially crafted URL composed of '/' sequences will disclose an arbitrary directory, appending the known filename will disclose the requested resource
target///// ...