PT-2013-2731 · Emc · Emc Documentum Taskspace+3
Published
2013-05-10
·
Updated
2013-05-10
·
CVE-2013-0937
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
EMC Documentum Webtop versions prior to 6.7 SP2
EMC Documentum WDK versions prior to 6.7 SP2
EMC Documentum Taskspace versions prior to 6.7 SP2
EMC Documentum Records Manager versions prior to 6.7 SP2
Description
A session fixation issue allows remote attackers to hijack web sessions. The estimated number of potentially affected devices and details about real-world incidents are not provided.
Recommendations
For EMC Documentum Webtop versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
For EMC Documentum WDK versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
For EMC Documentum Taskspace versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
For EMC Documentum Records Manager versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Emc Documentum Records Manager
Emc Documentum Taskspace
Emc Documentum Wdk
Emc Documentum Webtop