PT-2013-2732 · Emc · Emc Documentum Taskspace+3
Published
2013-05-10
·
Updated
2013-05-10
·
CVE-2013-0938
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
EMC Documentum Webtop versions prior to 6.7 SP2
EMC Documentum WDK versions prior to 6.7 SP2
EMC Documentum Taskspace versions prior to 6.7 SP2
EMC Documentum Records Manager versions prior to 6.7 SP2
Description
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. This could potentially lead to unauthorized actions on the affected system.
Recommendations
For EMC Documentum Webtop versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
For EMC Documentum WDK versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
For EMC Documentum Taskspace versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
For EMC Documentum Records Manager versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Emc Documentum Records Manager
Emc Documentum Taskspace
Emc Documentum Wdk
Emc Documentum Webtop