EMC Documentum Content Server prior to 6.7 SP2 P16 and 7.x prior to 7.1 P07, when Oracle Database is used, does not properly restrict DQL hints, which allows remote authenticated users to conduct DQL injection attacks and read sensitive database content via a crafted request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emc documentum content server 7.0 |
||
emc documentum content server 7.1 |
||
emc documentum content server |
||
emc documentum content server 6.5 |
||
emc documentum content server 6.7 |
||
emc documentum content server 6.0 |
||
emc documentum content server 6.6 |