Computer Security
[EN] securityvulns.ru no-pyccku


EMC Documentum TaskSpace security vulnerabilities
Published:31.03.2014
Source:
SecurityVulns ID:13655
Type:remote
Threat Level:
5/10
Description:Privilege escalation, information leakage.
Affected:EMC : Documentum TaskSpace 6.7
CVE:CVE-2014-0630 (EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 allows remote authenticated users to read arbitrary files via a modified imaging-service URL.)
 CVE-2014-0629 (EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 does not properly handle the interaction between the dm_world group and the dm_superusers_dynamic group, which allows remote authenticated users to obtain sensitive information and gain privileges in opportunistic circumstances by leveraging an incorrect group-addition implementation.)
Original documentdocumentEMC, ESA-2014-012: EMC Documentum TaskSpace Multiple Vulnerabilities (31.03.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod