Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2018 Tenable Network Security, Inc.EMC_DOCUMENTUM_CONTENT_SERVER_ESA-2014-046.NASL
HistorySep 11, 2014 - 12:00 a.m.

EMC Documentum Content Server Multiple Vulnerabilities (ESA-2014-046)

2014-09-1100:00:00
This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.
www.tenable.com
14
JSON

The remote host is running a version of EMC Documentum Content Server that is affected by multiple vulnerabilities :

  • A privilege escalation vulnerability exists due to improper authorization checks. A remote, authenticated attacker can exploit this vulnerability to access data or execute commands with superuser privileges.
    (CVE-2014-2506)

  • A remote command injection vulnerability exists due to a failure to properly validate user input. A remote, authenticated attacker can exploit this vulnerability to inject arbitrary shell commands.
    (CVE-2014-2507)

  • An information disclosure vulnerability exists due to a flaw in the Documentum Query Language (DQL) engine. A remote, authenticated attacker can exploit this vulnerability to conduct DQL injection attacks and read arbitrary data from the database. (CVE-2014-2508)

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(77633);
  script_version("1.3");
  script_cvs_date("Date: 2018/11/15 20:50:26");

  script_cve_id("CVE-2014-2506", "CVE-2014-2507", "CVE-2014-2508");
  script_bugtraq_id(67916, 67917, 67918);

  script_name(english:"EMC Documentum Content Server Multiple Vulnerabilities (ESA-2014-046)");
  script_summary(english:"Checks for Documentum Content Server.");

  script_set_attribute(attribute:"synopsis", value:"The remote host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The remote host is running a version of EMC Documentum Content Server
that is affected by multiple vulnerabilities :

  - A privilege escalation vulnerability exists due to
    improper authorization checks. A remote, authenticated
    attacker can exploit this vulnerability to access data
    or execute commands with superuser privileges.
    (CVE-2014-2506)

  - A remote command injection vulnerability exists due to
    a failure to properly validate user input. A remote,
    authenticated attacker can exploit this vulnerability
    to inject arbitrary shell commands.
    (CVE-2014-2507)

  - An information disclosure vulnerability exists due to a
    flaw in the Documentum Query Language (DQL) engine. A
    remote, authenticated attacker can exploit this
    vulnerability to conduct DQL injection attacks and
    read arbitrary data from the database. (CVE-2014-2508)");
  script_set_attribute(attribute:"see_also", value:"https://seclists.org/bugtraq/2014/Jun/att-50/ESA-2014-046.txt");
  script_set_attribute(attribute:"solution", value:"Apply the relevant patch referenced in the vendor advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/06/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/06/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/09/11");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:emc:documentum_content_server");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.");
  script_family(english:"Windows");

  script_dependencies("emc_documentum_content_server_installed.nbin");
  script_require_keys("installed_sw/EMC Documentum Content Server");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("emc_documentum.inc");

app_name = DOC_APP_NAME;
get_install_count(app_name:app_name, exit_if_zero:TRUE);
install = get_single_install(app_name:app_name, exit_if_unknown_ver:TRUE);

fixes = make_nested_list(
  make_list("7.1P05"),
  make_list("7.0P15"),
  make_list("6.7SP2P14"),
  make_list("6.7SP1P28", DOC_NO_MIN)
);

documentum_check_and_report(install:install, fixes:fixes, severity:SECURITY_HOLE);
VendorProductVersionCPE
emcdocumentum_content_servercpe:/a:emc:documentum_content_server

Related

securityvulns 2
prion 3
cve 3
cert 1
securityvulns
securityvulns
ESA-2014-046: EMC Documentum Content Server Multiple Vulnerabilities
2014-06-14 00:00:00
EMC Documentum multiple security vulnerabilities
2015-09-14 00:00:00
prion
prion
Design/Logic Flaw
2014-06-08 04:31:00
Design/Logic Flaw
2014-06-08 04:31:00
Design/Logic Flaw
2014-06-08 04:31:00
cve
cve
CVE-2014-2506
2014-06-08 04:31:00
CVE-2014-2507
2014-06-08 04:31:00
CVE-2014-2508
2014-06-08 04:31:00
cert
cert
EMC Documentum products contain multiple vulnerabilities
2014-12-15 00:00:00
JSON
Related for EMC_DOCUMENTUM_CONTENT_SERVER_ESA-2014-046.NASL
securityvulns2prion3cve3cert1