Vulnerability Details CVE-2003-0626
psdoccgi.exe in PeopleSoft PeopleTools 8.4 through 8.43 allows remote attackers to read arbitrary files via the (1) headername or (2) footername arguments.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/vulnwatch/2003-q4/0042.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013652.html
- http://www.auscert.org.au/render.html?it=3610
- http://www.secunia.com/advisories/10225/
- http://www.securityfocus.com/bid/9037
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13754
- http://archives.neohapsis.com/archives/vulnwatch/2003-q4/0042.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013652.html
- http://www.auscert.org.au/render.html?it=3610
- http://www.secunia.com/advisories/10225/
- http://www.securityfocus.com/bid/9037
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13754
Products affected by CVE-2003-0626
-
cpe:2.3:a:peoplesoft:peopletools:8.10
-
cpe:2.3:a:peoplesoft:peopletools:8.11
-
cpe:2.3:a:peoplesoft:peopletools:8.12
-
cpe:2.3:a:peoplesoft:peopletools:8.13
-
cpe:2.3:a:peoplesoft:peopletools:8.14
-
cpe:2.3:a:peoplesoft:peopletools:8.15
-
cpe:2.3:a:peoplesoft:peopletools:8.16
-
cpe:2.3:a:peoplesoft:peopletools:8.17
-
cpe:2.3:a:peoplesoft:peopletools:8.18
-
cpe:2.3:a:peoplesoft:peopletools:8.19
-
cpe:2.3:a:peoplesoft:peopletools:8.20
-
cpe:2.3:a:peoplesoft:peopletools:8.4
-
cpe:2.3:a:peoplesoft:peopletools:8.40
-
cpe:2.3:a:peoplesoft:peopletools:8.41
-
cpe:2.3:a:peoplesoft:peopletools:8.42
-
cpe:2.3:a:peoplesoft:peopletools:8.43