Documentum Products 'dmclTrace.jsp' Arbitrary File Overwrite Vulnerability

Bugtraq ID: 27632
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Feb 05 2008 12:00AM
Updated: Feb 11 2008 08:46PM
Credit: Pablo Gaston Milano is credited with the discovery of this vulnerability.
Vulnerable: Documentum WebTop 5.3 .317
Documentum WebTop 5.2.5 SP2
Documentum WebTop 5.2.5
Documentum Documentum Administrator 5.3 .313
Documentum Documentum Administrator 5.2.5 SP2
Documentum Documentum Administrator 5.2.5
Documentum Documentum Administrator 4.2.8
- HP HP-UX 11.0
- IBM AIX 4.3
- Microsoft Windows 2000 Server SP2
 - Microsoft Windows 2000 Server SP1
 - Microsoft Windows 2000 Server
- Microsoft Windows NT Server 4.0 SP6a
 - Microsoft Windows NT Server 4.0 SP6
 - Microsoft Windows NT Server 4.0 SP5
 - Microsoft Windows NT Server 4.0 SP4
 - Microsoft Windows NT Server 4.0 SP3
 - Microsoft Windows NT Server 4.0 SP2
 - Microsoft Windows NT Server 4.0 SP1
 - Microsoft Windows NT Server 4.0
 - Sun Solaris 8_sparc
 - Sun Solaris 7.0
Not Vulnerable: Documentum WebTop 5.3 SP4
Documentum Documentum Administrator 5.3 SP4


 

Privacy Statement
Copyright 2010, SecurityFocus