CVE-2003-0621

2003-11-0505:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.8%

JSON

The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to determine the existence of files outside the web root via modified paths in the INIFILE argument.

References

dev2dev.bea.com/resourcelibrary/advisoriesnotifications/advisory03_38_00.jsp

marc.info/?l=bugtraq&m=106762000607681&w=2

www.securityfocus.com/bid/8931

exchange.xforce.ibmcloud.com/vulnerabilities/13559