CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
89.4%
Unrestricted file upload vulnerability in dmclTrace.jsp in EMC Documentum Administrator 5.3.0.313 and Webtop 5.3.0.317 allows remote attackers to overwrite arbitrary files via the filename attribute.
Vendor | Product | Version | CPE |
---|---|---|---|
emc | documentum_administrator | 4.2.8 | cpe:2.3:a:emc:documentum_administrator:4.2.8:*:*:*:*:*:*:* |
emc | documentum_administrator | 5.2.5 | cpe:2.3:a:emc:documentum_administrator:5.2.5:*:*:*:*:*:*:* |
emc | documentum_administrator | 5.2.5_sp2 | cpe:2.3:a:emc:documentum_administrator:5.2.5_sp2:*:*:*:*:*:*:* |
emc | documentum_administrator | 5.3.0.313 | cpe:2.3:a:emc:documentum_administrator:5.3.0.313:*:*:*:*:*:*:* |
emc | documentum_webtop | 5.2.5 | cpe:2.3:a:emc:documentum_webtop:5.2.5:*:*:*:*:*:*:* |
emc | documentum_webtop | 5.2.5_sp2 | cpe:2.3:a:emc:documentum_webtop:5.2.5_sp2:*:*:*:*:*:*:* |
emc | documentum_webtop | 5.3.0.317 | cpe:2.3:a:emc:documentum_webtop:5.3.0.317:*:*:*:*:*:*:* |
secunia.com/advisories/28810
securityreason.com/securityalert/3626
www.cybsec.com/vuln/CYBSEC-Security_Advisory_Documentum_dmclTrace_Arbitrary_file_overwrite.pdf
www.securityfocus.com/archive/1/487603/100/0/threaded
www.securityfocus.com/bid/27632
www.securitytracker.com/id?1019305
www.vupen.com/english/advisories/2008/0439