5 matches found
ESA-2015-131: EMC Documentum Content Server Multiple Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-131: EMC Documentum Content Server Multiple Vulnerabilities EMC Identifier: ESA-2015-131 CVE Identifier: CVE-2015-4531, CVE-2015-4532, CVE-2015-4533, CVE-2015-4534, CVE-2015-4535, CVE-2015-4536 Severity Rating: CVSS v2 Base Score: See below f...
sysadmin privilege in EMC Documentum Content Server
Product: EMC Documentum Content Server Vendor: EMC Version: ANY CVE: N/A Risk: High Status: public/not fixed In 2011 Yuri Simone discovered a security flaw in EMC Documentum Content Server, which allows users with sysadmin privileges to elevate their privileges to superuser see CVE-2011-4144. On...
CVE-2015-4531
creationtimestamp| type| source ---|---|--- 2015-08-21 13:00:41+00:00| seen| MISP/55d720e0-f5c8-4290-ba7f-289f0a00020f...
CVE-2015-4531
The CVE-2015-4531 issue affects EMC Documentum Content Server prior to the specified patches: 6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P02. Root cause is an incomplete fix for CVE-2014-4622, leading to improper authorization checks for subgroups of privileged ...
EMC Documentum Content Server Multiple Vulnerabilities (ESA-2015-131)
The version of EMC Documentum Content Server running on the remote host is affected by multiple vulnerabilities : - A privilege escalation vulnerability exists due to improper authorization checks performed on subgroups within the dmsuperusers group. An authenticated, remote attacker can exploit...