Lucene search
K

15 matches found

Exploit DB
Exploit DB
added 2017/10/17 12:0 a.m.58 views

OpenText Documentum Content Server - Arbitrary File Download

!/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server contains following design gap, which allows authenticated user to download arbitrary content files regardless attacker's repository permissions: when authenticated user upload content to...

4.3CVSS4.7AI score0.04946EPSS
Exploits4
Exploit DB
Exploit DB
added 2017/10/17 12:0 a.m.65 views

OpenText Documentum Content Server - 'dmr_content' Privilege Escalation

!/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server contains following design gap, which allows authenticated user to gain privileges of superuser: Content Server stores information about uploaded files in dmrcontent objects, which are queryable...

8.8CVSS8.8AI score0.06639EPSS
Exploits4
Exploit DB
Exploit DB
added 2017/10/17 12:0 a.m.58 views

OpenText Documentum Content Server - Arbitrary File Download Privilege Escalation

!/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server does not properly validate input of PUTFILE RPC-command which allows any authenticated user to hijack arbitrary file from Content Server filesystem, because some files on Content Server...

8.8CVSS8.8AI score0.07782EPSS
Exploits4
Exploit DB
Exploit DB
added 2017/10/17 12:0 a.m.62 views

OpenText Documentum Content Server - Privilege Escalation

!/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server contains following design gap, which allows authenticated user to gain privileges of superuser: Content Server allows to upload content using batches TAR archives, when unpacking TAR archives...

8.8CVSS8.8AI score0.09494EPSS
Exploits4
exploitpack
exploitpack
added 2017/10/17 12:0 a.m.72 views

OpenText Documentum Content Server - Arbitrary File Download Privilege Escalation

OpenText Documentum Content Server - Arbitrary File Download Privilege Escalation !/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server does not properly validate input of PUTFILE RPC-command which allows any authenticated user to hijack arbitrary...

6.5CVSS8.9AI score0.07782EPSS
Exploits4
exploitpack
exploitpack
added 2017/10/17 12:0 a.m.107 views

OpenText Documentum Content Server - dmr_content Privilege Escalation

OpenText Documentum Content Server - dmrcontent Privilege Escalation !/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server contains following design gap, which allows authenticated user to gain privileges of superuser: Content Server stores...

6.5CVSS1.2AI score0.06639EPSS
Exploits4
exploitpack
exploitpack
added 2017/10/17 12:0 a.m.98 views

OpenText Documentum Content Server - Arbitrary File Download

OpenText Documentum Content Server - Arbitrary File Download !/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server contains following design gap, which allows authenticated user to download arbitrary content files regardless attacker's repository...

4CVSS4.7AI score0.04946EPSS
Exploits4
0day.today
0day.today
added 2017/10/15 12:0 a.m.81 views

Opentext Documentum Content Server File Download Exploit

Opentext Documentum Content Server formerly known as EMC Documentum Content Server contains a design gap that allows authenticated user to download arbitrary content files regardless of the attacker's repository permissions. !/usr/bin/env python Opentext Documentum Content Server formerly known a...

4CVSS5.3AI score0.04946EPSS
Exploits4
0day.today
0day.today
added 2017/10/15 12:0 a.m.65 views

Opentext Documentum Content Server File Hijack / Privilege Escalation Exploit

Opentext Documentum Content Server formerly known as EMC Documentum Content Server does not properly validate input of the PUTFILE RPC command which allows any authenticated user to hijack arbitrary file from the Content Server filesystem. Because some files on the Content Server filesystem are...

6.5CVSS8.8AI score0.07782EPSS
Exploits4
Packet Storm
Packet Storm
added 2017/10/14 12:0 a.m.69 views

Opentext Documentum Content Server File Hijack / Privilege Escalation

!/usr/bin/env python Opentext Documentum Content Server formerly known as EMC Documentum Content Server does not properly validate input of PUTFILE RPC-command which allows any authenticated user to hijack arbitrary file from Content Server filesystem, because some files on Content Server...

1AI score0.07782EPSS
Exploits4
NVD
NVD
added 2017/10/13 4:29 p.m.28 views

CVE-2017-15014

OpenText Documentum Content Server formerly EMC Documentum Content Server through 7.3 contains the following design gap, which allows authenticated users to download arbitrary content files regardless of the attacker's repository permissions: When an authenticated user uploads content to the...

4.3CVSS4.6AI score0.04946EPSS
Exploits4References3
Cvelist
Cvelist
added 2017/10/13 4:0 p.m.32 views

CVE-2017-15276

OpenText Documentum Content Server formerly EMC Documentum Content Server through 7.3 contains the following design gap, which allows an authenticated user to gain superuser privileges: Content Server allows uploading content using batches TAR archives. When unpacking TAR archives, Content Server...

8.8AI score0.09494EPSS
Exploits4References3
Packet Storm
Packet Storm
added 2017/04/25 12:0 a.m.217 views

OpenText Documentum Content Server SQL Injection

!/usr/bin/env python import socket import sys from os.path import basename from dctmpy.docbaseclient import DocbaseClient from dctmpy.obj.typedobject import TypedObject CIPHERS = "ALL:aNULL:!eNULL" def usage: print "usage:\n\t%s host port user password" % basenamesys.argv0 def main: if lensys.arg...

9CVSS0.4AI score0.04232EPSS
Exploits6
Prion
Prion
added 2017/04/21 2:59 a.m.16 views

Design/Logic Flaw

OpenText Documentum Content Server allows superuser access via sysobjsave or save of a crafted object, followed by an unauthorized "UPDATE dmdbo.dmusers SET userprivileges=16" command, aka an "RPC save-commands" attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-453...

9CVSS8.6AI score0.03127EPSS
Exploits5References3
Packet Storm
Packet Storm
added 2017/02/16 12:0 a.m.222 views

OpenText Documentum Content Server 7.3 SQL Injection

CVE Identifier: CVE-2017-5585 Vendor: OpenText Affected products: OpenText Documentum Content Server 7.3 PostgreSQL builds only Researcher: Andrey B. Panfilov Severity Rating: CVSS v3 Base Score: 8.8 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Fix: not available Description: Previously announced fix for...

6.3CVSS0.3AI score0.02012EPSS
Exploits2
Rows per page
Query Builder