CVE-2003-0626 Information

Description

psdoccgi.exe in PeopleSoft PeopleTools 8.4 through 8.43 allows remote attackers to read arbitrary files via the (1) headername or (2) footername arguments.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2003-q4/0042.html http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013652.html http://www.auscert.org.au/render.html?it=3610 http://www.secunia.com/advisories/10225/ http://www.securityfocus.com/bid/9037 https://exchange.xforce.ibmcloud.com/vulnerabilities/13754