CVE-2003-0841

{"id": "CVE-2003-0841", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2003-11-17T05:00:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=106554919000847&w=2", "tags": ["Mailing List"], "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=106554919000847&w=2", "tags": ["Mailing List"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The grid option in PeopleSoft 8.42 stores temporary .xls files in guessable directories under the web document root, which allows remote attackers to steal search results by directly accessing the files via a URL request."}, {"lang": "es", "value": "La opci\u00f3n de rejilla en PeopleSoft 8.42 almacena ficheros .xls temporales en directorios predecibles bajo la ra\u00edz de documentos web, lo que permite a atacantes remotos robar resultados de b\u00fasquedas accediendo directamente a ellos mediante una petici\u00f3n URL."}], "lastModified": "2024-11-20T23:45:38.873", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:peopletools:8.42:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3AB9F0A9-4E09-4B11-8CFD-5FACB0C40047"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}