Bearshare v4.0.6 and below is contains a directory traversal bug which allows remote attackers to view any file on the system by sending a specially crafted HTTP request. Exploit URL's included.
cad3d0362461a14c8ccbd95f6f1f600ac94604d550985ae00256a9005707e65c