EMC Documentum Content Server Local Privilege Escalation Vulnerability
BID:51789
Info
EMC Documentum Content Server Local Privilege Escalation Vulnerability
| Bugtraq ID: | 51789 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2011-4144 |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 01 2012 12:00AM |
| Updated: | Feb 01 2012 12:00AM |
| Credit: | Yuri Simione |
| Vulnerable: |
EMC Documentum Content Server 6.6 EMC Documentum Content Server 6.5 EMC Documentum Content Server 6.0 |
| Not Vulnerable: |
EMC Documentum Content Server 6.7 EMC Documentum Content Server 6.6 P02 EMC Documentum Content Server 6.5 SP3 P02 EMC Documentum Content Server 6.5 SP2 P02 |
Discussion
EMC Documentum Content Server Local Privilege Escalation Vulnerability
EMC Documentum Content Server is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to execute arbitrary code with superuser privileges. Successful exploits will allow attackers to completely compromise the affected computer.
EMC Documentum Content Server is prone to a local privilege-escalation vulnerability.
An attacker can exploit this issue to execute arbitrary code with superuser privileges. Successful exploits will allow attackers to completely compromise the affected computer.
Exploit / POC
EMC Documentum Content Server Local Privilege Escalation Vulnerability
Currently we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
EMC Documentum Content Server Local Privilege Escalation Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
EMC Documentum Content Server Local Privilege Escalation Vulnerability
References:
References:
- EMC Homepage (EMC)
- ESA-2012-009: EMC Documentum Content Server privilege elevation vulnerability (Security_Alert)