SCI Chat (http://www.simmcomm.ch/scichatinst) is "a Java based chat server". A directory traversal vulnerability in SCI Chat allows remote attackers to access files that reside outside the bounding HTML root directory.

http://www.securiteam.com/windowsntfocus/5FP0G2KNFE.html