CVE-2003-1168 2003-12-31T00:00:00.000-05:00 2008-09-05T16:36:13.357-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2005-05-22T23:19:00.000-04:00 SECUNIA 10125 BID 8949 HTTP Commander 4.0 allows remote attackers to obtain sensitive information via an HTTP request that contains a . (dot) in the file parameter, which reveals the installation path in an error message.