Back to search
CVE-2003-0950
Published: Nov 18, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
PeopleSoft PeopleTools 8.1x, 8.2x, and 8.4x allows remote attackers to execute arbitrary commands by uploading a file to the IClient Servlet, guessing the insufficiently random (system time) name of the directory used to store the file, and directly requesting that file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20031112 IClient Servlet Remote Command Execution Vulnerability
third-party-advisory
x_refsource_ISS
peoplesoft-iclientservlet-file-upload(12805)
vdb-entry
x_refsource_XF
9041
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now