Directory traversal vulnerability in PeopleTools 8.10 through 8.18, 8.40, and 8.41 allows remote attackers to overwrite arbitrary files via the SchedulerTransfer servlet.
http://www.securityfocus.com/bid/7053
http://www.iss.net/security_center/static/10962.php
http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21999