Directory traversal vulnerability in sendform.cgi 1.44 and earlier allows remote attackers to read arbitrary files by specifying the desired files in the BlurbFilePath parameter.Referenceshttp://www.osvdb.org/3568http://www.scn.org/~bb615/scripts/sendform.htmlhttp://marc.info/?l=bugtraq&m=102809084218422&w=2http://www.securityfocus.com/bid/5286http://www.iss.net/security_center/static/9725.php
