CVE-2003-0104 | Vulnerability Database | Aqua Security

Directory traversal vulnerability in PeopleTools 8.10 through 8.18, 8.40, and 8.41 allows remote attackers to overwrite arbitrary files via the SchedulerTransfer servlet.

Affected Software

Name	Vendor	Start Version	End Version
Peopletools	Peoplesoft	8.10 (including)	8.10 (including)
Peopletools	Peoplesoft	8.11 (including)	8.11 (including)
Peopletools	Peoplesoft	8.12 (including)	8.12 (including)
Peopletools	Peoplesoft	8.13 (including)	8.13 (including)
Peopletools	Peoplesoft	8.14 (including)	8.14 (including)
Peopletools	Peoplesoft	8.15 (including)	8.15 (including)
Peopletools	Peoplesoft	8.16 (including)	8.16 (including)
Peopletools	Peoplesoft	8.17 (including)	8.17 (including)
Peopletools	Peoplesoft	8.18 (including)	8.18 (including)
Peopletools	Peoplesoft	8.40 (including)	8.40 (including)
Peopletools	Peoplesoft	8.41 (including)	8.41 (including)

References

http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21999
http://www.iss.net/security_center/static/10962.php
http://www.securityfocus.com/bid/7053
http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21999
http://www.iss.net/security_center/static/10962.php
http://www.securityfocus.com/bid/7053

NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0104
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html