psdoccgi.exe in PeopleSoft PeopleTools 8.4 through 8.43 allows remote attackers to read arbitrary files via the (1) headername or (2) footername arguments.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/vulnwatch/2003-q4/0042.html | Vendor Advisory |
http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013652.html | Vendor Advisory |
http://www.auscert.org.au/render.html?it=3610 | |
http://www.secunia.com/advisories/10225/ | Patch Vendor Advisory |
http://www.securityfocus.com/bid/9037 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/13754 |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2003-11-13 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2003-0626
Mitre link : CVE-2003-0626
CVE.ORG link : CVE-2003-0626
JSON object : View
Products Affected
peoplesoft
- peopletools
CWE