Required CVE Record Information
Description
EMC Documentum Content Server 7.0, 7.1 before 7.1 P10, and 6.7 before SP2 P19 allows remote authenticated users to read or delete arbitrary files via unspecified vectors related to an insecure direct object reference.
References 5 Total
- securityfocus.com: 20141202 ESA-2014-156: EMC Documentum Content Server Insecure Direct Object Reference Vulnerability mailing-list
- securitytracker.com: 1031298 vdb-entry
- securityfocus.com: 71422 vdb-entry
- exchange.xforce.ibmcloud.com: emc-documentum-cve20144629-priv-esc(99085) vdb-entry
- http://packetstormsecurity.com/files/129376/EMC-Documentum-Content-Server-Insecure-Direct-Object-Reference.html
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- securityfocus.com: 20141202 ESA-2014-156: EMC Documentum Content Server Insecure Direct Object Reference Vulnerability mailing-listx_transferred
- securitytracker.com: 1031298 vdb-entryx_transferred
- securityfocus.com: 71422 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: emc-documentum-cve20144629-priv-esc(99085) vdb-entryx_transferred
- http://packetstormsecurity.com/files/129376/EMC-Documentum-Content-Server-Insecure-Direct-Object-Reference.html x_transferred