Directory traversal vulnerability in SolarWinds TFTP Server 5.0.55, and possibly earlier, allows remote attackers to read arbitrary files via "..\" (dot-dot backslash) sequences in a GET request.
https://exchange.xforce.ibmcloud.com/vulnerabilities/10469
http://www.securityfocus.com/bid/6045
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0044.html