What is the severity of CVE-2003-0629?

CVE-2003-0629 has a severity rating that indicates moderate risk due to its potential for cross-site scripting attacks.

How do I fix CVE-2003-0629?

To fix CVE-2003-0629, upgrade to a version of PeopleTools that is later than 8.43, as vulnerabilities have been patched in subsequent releases.

What software is affected by CVE-2003-0629?

CVE-2003-0629 affects multiple versions of Oracle PeopleSoft PeopleTools, specifically versions 8.15 to 8.43.

What is the impact of CVE-2003-0629?

The impact of CVE-2003-0629 can allow attackers to execute arbitrary web scripts in the context of a user's session.

Who can exploit CVE-2003-0629?

CVE-2003-0629 can be exploited by remote attackers who can send crafted HTTP requests to the vulnerable IScript environment.

Vulnerability/
CVE-2003-0629

medium

4.3

CWE

NVD-CWE-Other 79

18/11/2003

8/8/2024

CVE-2003-0629: XSS

First published: Tue Nov 18 2003(Updated: )

Cross-site scripting (XSS) vulnerability in PeopleSoft IScript environment for PeopleTools 8.43 and earlier allows remote attackers to insert arbitrary web script via a certain HTTP request to IScript.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Oracle PeopleSoft PeopleTools	=8.15
Oracle PeopleSoft PeopleTools	=8.19
Oracle PeopleSoft PeopleTools	=8.42
Oracle PeopleSoft PeopleTools	=8.43
Oracle PeopleSoft PeopleTools	=8.12
Oracle PeopleSoft PeopleTools	=8.10
Oracle PeopleSoft PeopleTools	=8.17
Oracle PeopleSoft PeopleTools	=8.41
Oracle PeopleSoft PeopleTools	=8.16
Oracle PeopleSoft PeopleTools	=8.11
Oracle PeopleSoft PeopleTools	=8.18
Oracle PeopleSoft PeopleTools	=8.13
Oracle PeopleSoft PeopleTools	=8.20
Oracle PeopleSoft PeopleTools	=8.4
Oracle PeopleSoft PeopleTools	=8.14
Oracle PeopleSoft PeopleTools	=8.40

Never miss a vulnerability like this again

Reference Links

http://marc.info/?l=bugtraq&m=106874146204158&w=2

Frequently Asked Questions

What is the severity of CVE-2003-0629?
CVE-2003-0629 has a severity rating that indicates moderate risk due to its potential for cross-site scripting attacks.
How do I fix CVE-2003-0629?
To fix CVE-2003-0629, upgrade to a version of PeopleTools that is later than 8.43, as vulnerabilities have been patched in subsequent releases.
What software is affected by CVE-2003-0629?
CVE-2003-0629 affects multiple versions of Oracle PeopleSoft PeopleTools, specifically versions 8.15 to 8.43.
What is the impact of CVE-2003-0629?
The impact of CVE-2003-0629 can allow attackers to execute arbitrary web scripts in the context of a user's session.
Who can exploit CVE-2003-0629?
CVE-2003-0629 can be exploited by remote attackers who can send crafted HTTP requests to the vulnerable IScript environment.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/author
agent/references
agent/weakness
agent/last-modified-date
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-historical
vendor/peoplesoft
product/peopletools
canonical/peoplesoft peopletools
agent/software-canonical-lookup-request
collector/nvd-index
canonical/oracle peoplesoft peopletools
version/oracle peoplesoft peopletools/8.15
version/oracle peoplesoft peopletools/8.19
version/oracle peoplesoft peopletools/8.42
version/oracle peoplesoft peopletools/8.43
version/oracle peoplesoft peopletools/8.12
version/oracle peoplesoft peopletools/8.10
version/oracle peoplesoft peopletools/8.17
version/oracle peoplesoft peopletools/8.41
version/oracle peoplesoft peopletools/8.16
version/oracle peoplesoft peopletools/8.11
version/oracle peoplesoft peopletools/8.18
version/oracle peoplesoft peopletools/8.13
version/oracle peoplesoft peopletools/8.20
version/oracle peoplesoft peopletools/8.4
version/oracle peoplesoft peopletools/8.14
version/oracle peoplesoft peopletools/8.40