Directory traversal vulnerability in the HTTP interface in AXIGEN Mail Server 7.4.1 for Windows allows remote attackers to read arbitrary files via a %5C (encoded backslash) in the URL.
https://exchange.xforce.ibmcloud.com/vulnerabilities/61826
http://www.vupen.com/english/advisories/2010/2415
http://www.axigen.com/press/product-releases/axigen-releases-version-742_74.html
http://www.acunetix.com/blog/news/directory-traversal-axigen/