CVE-2003-0628
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
15/12/2003
Last modified:
18/10/2016
Description
PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:peoplesoft:peopletools:8.4:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.10:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.11:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.12:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.13:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.14:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.15:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.16:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.17:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.18:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.19:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.20:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.40:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.41:*:*:*:*:*:*:* | ||
cpe:2.3:a:peoplesoft:peopletools:8.42:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page