The thumbnail proxy server in EMC Documentum Digital Asset Manager (DAM) 6.5 SP3, 6.5 SP4, 6.5 SP5, and 6.5 SP6 before P13 allows remote malicious users to conduct Documentum Query Language (DQL) injection attacks and bypass intended restrictions on querying objects via a crafted parameter in a query string.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emc documentum digital asset manager 6.5 |