PT-2013-2733 · Emc · Emc Documentum Taskspace+3
Published
2013-05-10
·
Updated
2013-05-10
·
CVE-2013-0939
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
EMC Documentum Webtop versions prior to 6.7 SP2
EMC Documentum WDK versions prior to 6.7 SP2
EMC Documentum Taskspace versions prior to 6.7 SP2
EMC Documentum Records Manager versions prior to 6.7 SP2
Description
The issue allows remote attackers to obtain sensitive information via vectors involving cross-origin frame navigation, related to a "Cross Frame Scripting" issue.
Recommendations
For EMC Documentum Webtop versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
For EMC Documentum WDK versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
For EMC Documentum Taskspace versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
For EMC Documentum Records Manager versions prior to 6.7 SP2, update to version 6.7 SP2 or later.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Emc Documentum Records Manager
Emc Documentum Taskspace
Emc Documentum Wdk
Emc Documentum Webtop