An attacker can inject a drive letter or Windows volume letter
					('C:dirname') into a software system to potentially redirect access to an
					unintended location or arbitrary file.