Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outside of the upload directory via a .. (dot dot) attack.Referenceshttp://www.iss.net/security_center/static/7976.phphttp://online.securityfocus.com/archive/1/251763http://www.securityfocus.com/bid/3937
