CWE-22 describes the improper modification of a path name to a restricted directory. How can the vulnerability be addressed?