5
CVE-2003-0621
- EPSS 6.93%
- Veröffentlicht 01.12.2003 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:02:32
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to determine the existence of files outside the web root via modified paths in the INIFILE argument.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.93% | 0.933 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://dev2dev.bea.com/resourcelibrary/advisoriesnotifications/advisory03_38_00.jsp
http://marc.info/?l=bugtraq&m=106762000607681&w=2
http://www.securityfocus.com/bid/8931
https://exchange.xforce.ibmcloud.com/vulnerabilities/13559