Directory traversal vulnerability in the web server for (1) Elron Internet Manager (IM) Message Inspector and (2) Anti-Virus before 3.0.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the requested URL.
http://marc.info/?l=bugtraq&m=98567864203963&w=2
http://marc.info/?l=bugtraq&m=98538867727489&w=2
http://archives.neohapsis.com/archives/bugtraq/2001-03/0382.html