Directory traversal vulnerability in dsnmanager.asp for Hosting Controller allows remote attackers to read arbitrary files and directories via a .. (dot dot) in the RootName parameter.
http://www.iss.net/security_center/static/9104.php
http://archives.neohapsis.com/archives/bugtraq/2002-05/0142.html