Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emc documentum eroom 7.4.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-0398
EMC Documentum eRoom prior to 7.4.4 does not properly validate session cookies, which allows remote malicious users to hijack or replay sessions via unspecified vectors.
Emc Documentum Eroom 7.3.0
Emc Documentum Eroom 7.4.1
Emc Documentum Eroom 7.4.2
Emc Documentum Eroom
NA
CVE-2012-0404
Cross-site scripting (XSS) vulnerability in EMC Documentum eRoom prior to 7.4.4 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Emc Documentum Eroom 7.3.0
Emc Documentum Eroom 7.4.1
Emc Documentum Eroom 7.4.2
Emc Documentum Eroom
NA
CVE-2013-3286
Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom prior to 7.4.4 P11 allow remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Emc Documentum Eroom 7.4.3
Emc Documentum Eroom 7.3.0
Emc Documentum Eroom 7.4.1
Emc Documentum Eroom
Emc Documentum Eroom 7.4.0
Emc Documentum Eroom 7.4.2
NA
CVE-2011-2739
The file-blocking feature in EMC Documentum eRoom 7.3.x and 7.4.x prior to 7.4.3.g does not properly restrict the uploading and opening of files with dangerous file types, which allows remote authenticated users to execute arbitrary code via an uploaded file.
Emc Documentum Eroom 7.4.3
Emc Documentum Eroom 7.3.0
Emc Documentum Eroom 7.4.1
Emc Documentum Eroom 7.4.2
NA
CVE-2011-1741
Stack-based buffer overflow in ftserver.exe in the OpenText Hummingbird Client Connector, as used in the Indexing Server in EMC Documentum eRoom 7.x prior to 7.4.3.f and other products, allows remote malicious users to execute arbitrary code by sending a crafted message over TCP.
Emc Documentum Eroom 7.4.3
Emc Documentum Eroom 7.4.1
Emc Documentum Eroom 7.4.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started