Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0629

Overview

Vulnerability Score 8.5 8.5
CVE Id CVE-2014-0629
Last Modified 07 Mar 2014 02:16:34
Published 06 Mar 2014 06:55:05
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2014-0629

Summary

EMC Documentum TaskSpace (TSP) 6.7SP1 before P25 and 6.7SP2 before P11 does not properly handle the interaction between the dm_world group and the dm_superusers_dynamic group, which allows remote authenticated users to obtain sensitive information and gain privileges in opportunistic circumstances by leveraging an incorrect group-addition implementation.

Vulnerable Systems

Application

  • Emc Documentum Taskspace 6.7


References

BUGTRAQ - 20140305 ESA-2014-012: EMC Documentum TaskSpace Multiple Vulnerabilities


Last Updated: 27 May 2016 11:04:34