CVE-2015-4535

Name of the Vulnerable Software and Affected Versions EMC Documentum Content Server versions prior to 6.7SP1 P32 EMC Documentum Content Server versions prior to 6.7SP2 P25 EMC Documentum Content Server versions prior to 7.0 P19 EMC Documentum Content Server versions prior to 7.1 P16 EMC Documentum Content Server versions prior to 7.2 P02

Description The issue allows remote authenticated users to gain super-user privileges by leveraging the ability to read a log file containing a login ticket when debug trace is configured.

Recommendations For EMC Documentum Content Server versions prior to 6.7SP1 P32, update to version 6.7SP1 P32 or later. For EMC Documentum Content Server versions prior to 6.7SP2 P25, update to version 6.7SP2 P25 or later. For EMC Documentum Content Server versions prior to 7.0 P19, update to version 7.0 P19 or later. For EMC Documentum Content Server versions prior to 7.1 P16, update to version 7.1 P16 or later. For EMC Documentum Content Server versions prior to 7.2 P02, update to version 7.2 P02 or later.