Information Disclosure Vulnerability in PeopleSoft Gateway Administration Servlet

Information Disclosure Vulnerability in PeopleSoft Gateway Administration Servlet

CVE-2003-0628 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value.

Learn more about our Cis Benchmark Audit For Server Software.