Directory traversal vulnerability in the session mechanism of the web interface for Network Administration Visualized (NAV) before 3.1.1 allows attackers with filesystem write access to have an unknown impact via unknown attack vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/30174
http://www.vupen.com/english/advisories/2006/4447
http://www.securityfocus.com/bid/20995
http://sourceforge.net/project/shownotes.php?release_id=461986