Oracle · Peoplesoft · CVE-2003-0841
**Name of the Vulnerable Software and Affected Versions**
PeopleSoft version 8.42
**Description**
The issue concerns the grid option in PeopleSoft, which stores temporary .xls files in guessable directories under the web document root. This allows remote attackers to steal search results by directly accessing the files via a URL request.
**Recommendations**
For PeopleSoft version 8.42, consider restricting access to the temporary directories where .xls files are stored to prevent unauthorized access. As a temporary workaround, restrict direct URL access to these files until a more permanent solution is implemented.