CVE-2014-0629

Name of the Vulnerable Software and Affected Versions EMC Documentum TaskSpace (TSP) versions 6.7SP1 before P25 EMC Documentum TaskSpace (TSP) versions 6.7SP2 before P11

Description The issue arises from the incorrect handling of the interaction between the dm world group and the dm superusers dynamic group. This allows remote authenticated users to obtain sensitive information and gain privileges in certain circumstances by leveraging an incorrect group-addition implementation.

Recommendations For versions 6.7SP1 before P25, update to a version that includes the fixes provided in P25 or later. For versions 6.7SP2 before P11, update to a version that includes the fixes provided in P11 or later.