Directory traversal vulnerability in SeaNox Devwex before 1.2002.0601 allows remote attackers to read arbitrary files via ..\ (dot dot) sequences in an HTTP request.
http://www.seanox.de/projects.devwex.php
http://www.iss.net/security_center/static/9299.php
http://archives.neohapsis.com/archives/bugtraq/2002-06/0056.html