Lucene search

[email protected]NVD:CVE-2003-0626

HistoryNov 13, 2003 - 5:00 a.m.

CVE-2003-0626

2003-11-1305:00:00

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.6%

JSON

psdoccgi.exe in PeopleSoft PeopleTools 8.4 through 8.43 allows remote attackers to read arbitrary files via the (1) headername or (2) footername arguments.

Affected configurations

NVD

Node

peoplesoftpeopletoolsMatch8.4

peoplesoftpeopletoolsMatch8.10

peoplesoftpeopletoolsMatch8.11

peoplesoftpeopletoolsMatch8.12

peoplesoftpeopletoolsMatch8.13

peoplesoftpeopletoolsMatch8.14

peoplesoftpeopletoolsMatch8.15

peoplesoftpeopletoolsMatch8.16

peoplesoftpeopletoolsMatch8.17

peoplesoftpeopletoolsMatch8.18

peoplesoftpeopletoolsMatch8.19

peoplesoftpeopletoolsMatch8.20

peoplesoftpeopletoolsMatch8.40

peoplesoftpeopletoolsMatch8.41

peoplesoftpeopletoolsMatch8.42

peoplesoftpeopletoolsMatch8.43

References

archives.neohapsis.com/archives/vulnwatch/2003-q4/0042.html

lists.grok.org.uk/pipermail/full-disclosure/2003-November/013652.html

www.auscert.org.au/render.html?it=3610

www.secunia.com/advisories/10225/

www.securityfocus.com/bid/9037

exchange.xforce.ibmcloud.com/vulnerabilities/13754

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.6%

JSON

Related for NVD:CVE-2003-0626

cvelist1 cve1 securityvulns1