You are here

U-094: EMC Documentum Content Server Lets Local Administrative Users Gain Elevated Privileges

February 2, 2012 - 9:15am

Addthis

PROBLEM:

EMC Documentum Content Server Lets Local Administrative Users Gain Elevated Privileges

PLATFORM:

EMC Documentum Content Server 6.0, 6.5, 6.6

ABSTRACT:

EMC Documentum Content Server contains a privilege elevation vulnerability that may allow an unauthorized user to obtain highest administrative privileges on the system.

reference LINKS:

SecurityTracker Alert ID: 1026624
EMC Resource Library
CVE-2011-4144
bugtraq ESA-2012-009

IMPACT ASSESSMENT:

Medium

Discussion:

EMC Documentum Content Server contains a security vulnerability that may allow a system administrator to elevate their or other users privileges to highest super user privileges without appropriate authorization.

Impact:

A local administrative user can grant elevated privileges to themselves or other users.

Solution:

EMC strongly recommends all customers upgrade or install identified patches at the earliest opportunity.

Addthis