Directory traversal vulnerability in the com.endymion.sake.servlet.mail.MailServlet servlet for Endymion SakeMail 1.0.36 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) and a null character in the param_name parameter.Referenceshttp://www.iss.net/security_center/static/8358.phphttp://online.securityfocus.com/archive/1/259730http://www.securityfocus.com/bid/4223
