Vulnerabilities for Documentum eroom (...) - CXSECURITY.COM

Vulnerabilities for 'Documentum eroom'

2017-02-03

CVE-2017-2766

EMC Documentum eRoom version 7.4.4, EMC Documentum eRoom version 7.4.4 SP1, EMC Documentum eRoom version prior to 7.4.5 P04, EMC Documentum eRoom version prior to 7.5.0 P01 includes an unverified password change vulnerability that could potentially be exploited by malicious users to compromise the affected system.

2014-06-30

CVE-2014-2512

CWE-79

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom 7.4.3, 7.4.4 before P19, and 7.4.4 SP1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

2013-11-06

CVE-2013-3286

CWE-79

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom before 7.4.4 P11 allow remote attackers to inject arbitrary web script or HTML via a crafted URL.

2012-03-14

CVE-2012-0404

CWE-79

Cross-site scripting (XSS) vulnerability in EMC Documentum eRoom before 7.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2012-0398

CWE-264

EMC Documentum eRoom before 7.4.4 does not properly validate session cookies, which allows remote attackers to hijack or replay sessions via unspecified vectors.

2011-11-09

CVE-2011-2739

CWE-264

The file-blocking feature in EMC Documentum eRoom 7.3.x and 7.4.x before 7.4.3.g does not properly restrict the uploading and opening of files with dangerous file types, which allows remote authenticated users to execute arbitrary code via an uploaded file.

2011-07-19

CVE-2011-1741

CWE-119

Stack-based buffer overflow in ftserver.exe in the OpenText Hummingbird Client Connector, as used in the Indexing Server in EMC Documentum eRoom 7.x before 7.4.3.f and other products, allows remote attackers to execute arbitrary code by sending a crafted message over TCP.

>>> Vendor: EMC 177 Products

Legato networker

Navisphere manager

Retrospect client

Rsa security sitekey

Documentum administrator

Documentum webtop

Dantz retrospect backup server

Centera universal access

Documentum applicationxtender

Documentum applicationxtender workflow manager

Networker client

Networker module

Networker powersnap

Networker server

Networker storage node

Captiva pixtools distributed imaging

Homebase server

Rsa key manager client

Celerra network attached storage

Replication manager

Data protection advisor collector

Rsa adaptive authentication on-premise

Data loss prevention enterprise manager

Sourceone email management

Documentum eroom

Data protection advisor

Rsa key manager appliance

Documentum content server

Documentum xplore

Documentum information rights management

Documentum applicationxtender desktop

Captiva quickscan pro

Celerra network server

Applicationxtender desktop

Applicationxtender web access .net

Cloud tiering appliance virtual edition

Cloud tiering appliance

Rsa authentication agent

Rsa authentication client

Networker module for microsoft applications

Rsa data protection manager software server

Rsa data protection manager appliance

It operations intelligence

Rsa netwitness informer

Rsa archer egrc

Rsa archer smartsuite

Smarts network configuration manager

Smarts ip manager

Smarts mpls manager

Smarts network protocol manager

Smarts server manager

Smarts services assurance manager

Smarts voip availability manager

Documentum records manager

Documentum taskspace

Celerra control station

Vnx control station

Avamar server virtual edition

Documentum capital projects

Documentum digital asset manager

Documentum web publisher

Document sciences xpression

Rsa netwitness nextgen

Rsa security analytics

Connectrix manager

Documentum foundation services

Rsa bsafe ssl-j

Rsa data loss prevention

Vplex geosynchrony

See all Products for Vendor EMC

Copyright 2024, cxsecurity.com