emc documentum eroom 7.4.2 vulnerabilities and exploits

(subscribe to this query)

EMC Documentum eRoom prior to 7.4.4 does not properly validate session cookies, which allows remote malicious users to hijack or replay sessions via unspecified vectors.

Emc Documentum Eroom Emc Documentum Eroom 7.4.2 Emc Documentum Eroom 7.4.1 Emc Documentum Eroom 7.3.0

Cross-site scripting (XSS) vulnerability in EMC Documentum eRoom prior to 7.4.4 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.

Emc Documentum Eroom 7.4.1 Emc Documentum Eroom 7.3.0 Emc Documentum Eroom 7.4.2 Emc Documentum Eroom

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom prior to 7.4.4 P11 allow remote malicious users to inject arbitrary web script or HTML via a crafted URL.

Emc Documentum Eroom 7.4.1 Emc Documentum Eroom 7.4.0 Emc Documentum Eroom 7.3.0 Emc Documentum Eroom 7.4.3 Emc Documentum Eroom Emc Documentum Eroom 7.4.2

The file-blocking feature in EMC Documentum eRoom 7.3.x and 7.4.x prior to 7.4.3.g does not properly restrict the uploading and opening of files with dangerous file types, which allows remote authenticated users to execute arbitrary code via an uploaded file.

Emc Documentum Eroom 7.3.0 Emc Documentum Eroom 7.4.2 Emc Documentum Eroom 7.4.3 Emc Documentum Eroom 7.4.1

Stack-based buffer overflow in ftserver.exe in the OpenText Hummingbird Client Connector, as used in the Indexing Server in EMC Documentum eRoom 7.x prior to 7.4.3.f and other products, allows remote malicious users to execute arbitrary code by sending a crafted message over TCP.

Emc Documentum Eroom 7.4.2 Emc Documentum Eroom 7.4.3 Emc Documentum Eroom 7.4.1

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook