2 matches found
EMC Documentum TaskSpace远程权限提升漏洞
Bugtraq ID:65990 CVE ID:CVE-2014-0629 EMC Documentum是一款企业文档和图像管理工具,使文档的创建、修改、跟踪和在业务过程中的利用变得高效、规范和严谨。 把dmworld group用户提交到dmsuperusersdynamic组时存在安全漏洞,允许非特权TSP用户获取敏感特权信息。 0 EMC Documentum TaskSpace TSP 6.7SP1 EMC Documentum TaskSpace TSP 6.7SP2 厂商补丁: EMC ----- EMC Documentum TaskSpace 6.7 SP1 P25和6....
CVE-2014-0629
EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 are affected by CVE-2014-0629 due to an incorrect group-addition implementation between the dm_world group and the dm_superusers_dynamic group. This can allow remote authenticated users to obtain sensitive information and gain...