...
A security flaw exists in the code shown below resulting from the absence of proper canonicalization measures on the file path. This allows an attacker to traverse the filesystem and possibly write to a file of his choice, with the privileges of the vulnerable program. For example, it maybe possible to overwrite /etc/passwd or a device file such as the mouse which in turn can aid further exploitation or cause a denial of service to occur.
...
| Wiki Markup |
|---|
An attacker can control the value of {{argv\[1\]}} and consequently access any resource on the filesystem. |
...