9 - VU#315340

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	EMC Documentum products contain multiple vulnerabilities

Informations
Name	VU#315340	First vendor Publication	2014-12-15
Vendor	VU-CERT	Last vendor Modification	2014-12-17
Severity (Vendor)	N/A	Revision	M

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:C/I:C/A:C)
Cvss Base Score	9	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	8	Authentication	Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

Vulnerability Note VU#315340

EMC Documentum products contain multiple vulnerabilities

Original Release date: 15 Dec 2014 | Last revised: 17 Dec 2014

Overview

EMC Documentum products including Content Server, D2, and Web Development Kit (WDK) contain multiple vulnerabilities.

Description

EMC Documentum Content Server, D2, and WDK contain numerous vulnerabilities of varying impact. For details, view our spreadsheet.

The CVSS score below reflects use of backdoor credentials (see VU#184360, VU#695112, and VU#982432 in the spreadsheet).

Impact

The severity of impact varies. Specific examples include information disclosure, privilege escalation, authentication bypass, arbitrary code execution, shell command injection, and unauthorized access via backdoor credentials. Worst-case scenarios allow an attacker to take complete control of a vulnerable system.

Solution

Apply an update

EMC has released updates to address many of the issues in question. For information about specific updates, including discussion about their effectiveness, refer to the spreadsheet.

Vendor Information (Learn More)

Vendor	Status	Date Notified	Date Updated
EMC Corporation	Affected	25 Apr 2014	16 Dec 2014

If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group	Score	Vector
Base	10.0	AV:N/AC:L/Au:N/C:C/I:C/A:C
Temporal	9.0	E:POC/RL:ND/RC:C
Environmental	6.7	CDP:ND/TD:M/CR:ND/IR:ND/AR:ND

References

https://docs.google.com/spreadsheets/d/1DiiUPCPvmaliWcfwPSc36y2mDvuidkDKQBWqaIuJi0A/edit?usp=sharing
http://www.emc.com/domains/documentum/index.htm

Credit

Thanks to Andrey B. Panfilov for reporting these vulnerabilities.

This document was written by Joel Land.

Other Information

CVE IDs:CVE-2014-2520CVE-2014-2518CVE-2014-4622CVE-2014-2514CVE-2014-2507CVE-2014-2513CVE-2014-4618CVE-2014-4626CVE-2014-2515CVE-2014-2504CVE-2014-4629
Date Public:15 Dec 2014
Date First Published:15 Dec 2014
Date Last Updated:17 Dec 2014
Document Revision:45

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Original Source

Url : http://www.kb.cert.org/vuls/id/315340

CWE : Common Weakness Enumeration

%	Id	Name
64 %	CWE-264	Permissions, Privileges, and Access Controls
18 %	CWE-20	Improper Input Validation
9 %	CWE-352	Cross-Site Request Forgery (CSRF) (CWE/SANS Top 25)
9 %	CWE-78	Improper Sanitization of Special Elements used in an OS Command ('OS Command Injection') (CWE/SANS Top 25)

CPE : Common Platform Enumeration

Type	Description	Count
Application	Emc Digital Assets Manager cpe:2.3:a:emc:digital_assets_manager:6.5:sp6:::::: cpe:2.3:a:emc:digital_assets_manager:6.5:::::::* cpe:2.3:a:emc:digital_assets_manager:6.5:sp5::::::	3
Application	Emc Documentum Administrator cpe:2.3:a:emc:documentum_administrator:7.1:::::::* cpe:2.3:a:emc:documentum_administrator:7.0:::::::* cpe:2.3:a:emc:documentum_administrator:6.7:sp1:::::: cpe:2.3:a:emc:documentum_administrator:6.7:::::::* cpe:2.3:a:emc:documentum_administrator:6.7:sp2::::::	5
Application	Emc Documentum Capital Projects cpe:2.3:a:emc:documentum_capital_projects:1.9:::::::* cpe:2.3:a:emc:documentum_capital_projects:1.8:::::::*	2
Application	Emc Documentum Content Server cpe:2.3:a:emc:documentum_content_server:7.1:::::::* cpe:2.3:a:emc:documentum_content_server:7.0:::::::* cpe:2.3:a:emc:documentum_content_server:6.7:-:::::: cpe:2.3:a:emc:documentum_content_server:6.7:sp2:::::: cpe:2.3:a:emc:documentum_content_server:6.7:sp1:::::: cpe:2.3:a:emc:documentum_content_server:6.7:::::::* cpe:2.3:a:emc:documentum_content_server:6.6:::::::* cpe:2.3:a:emc:documentum_content_server:6.5:sp3:::::: cpe:2.3:a:emc:documentum_content_server:6.5:::::::* cpe:2.3:a:emc:documentum_content_server:6.5:sp1:::::: cpe:2.3:a:emc:documentum_content_server:6.5:sp2:::::: cpe:2.3:a:emc:documentum_content_server:6.0:::::::*	12
Application	Emc Documentum D2 cpe:2.3:a:emc:documentum_d2:4.2:::::::* cpe:2.3:a:emc:documentum_d2:4.1:::::::* cpe:2.3:a:emc:documentum_d2:4.0:::::::* cpe:2.3:a:emc:documentum_d2:3.1:sp1:::::: cpe:2.3:a:emc:documentum_d2:3.1:-::::::	5
Application	Emc Documentum Records Manager cpe:2.3:a:emc:documentum_records_manager:6.7:sp2:::::: cpe:2.3:a:emc:documentum_records_manager:6.7:::::::* cpe:2.3:a:emc:documentum_records_manager:6.7:sp1::::::	3
Application	Emc Documentum Wdk cpe:2.3:a:emc:documentum_wdk:6.7:sp2:::::: cpe:2.3:a:emc:documentum_wdk:6.7:sp1::::::	2
Application	Emc Documentum Webtop cpe:2.3:a:emc:documentum_webtop:6.7:sp2:::::: cpe:2.3:a:emc:documentum_webtop:6.7:::::::* cpe:2.3:a:emc:documentum_webtop:6.7:sp1::::::	3
Application	Emc Engineering Plant Facilities Management Solution For Documentum cpe:2.3:a:emc:engineering_plant_facilities_management_solution_for_documentum:1.7:sp1::::::	1
Application	Emc Task Space cpe:2.3:a:emc:task_space:6.7:sp1:::::: cpe:2.3:a:emc:task_space:6.7:sp2::::::	2
Application	Emc Web Publishers cpe:2.3:a:emc:web_publishers:6.5:sp7:::::: cpe:2.3:a:emc:web_publishers:6.5:sp6::::::	2

Information Assurance Vulnerability Management (IAVM)

Date	Description
2014-06-05	IAVM : 2014-B-0066 - EMC Documentum D2 Remote Privilege Escalation Vulnerability Severity : Category II - VMSKEY : V0051849

Snort® IPS/IDS

Date	Description
2015-10-01	EMC Documentum Content Server remote access attempt RuleID : 35849 - Revision : 2 - Type : POLICY-OTHER

Nessus® Vulnerability Scanner

Date	Description
2015-08-19	Name : The remote host is affected by multiple vulnerabilities. File : emc_documentum_content_server_ESA-2015-131.nasl - Type : ACT_GATHER_INFO
2014-12-04	Name : The remote host is affected by an insecure direct object reference vulnerabil... File : emc_documentum_content_server_ESA-2014-156.nasl - Type : ACT_GATHER_INFO
2014-09-25	Name : The remote host is affected by multiple privilege escalation vulnerabilities. File : emc_documentum_content_server_ESA-2014-091.nasl - Type : ACT_GATHER_INFO
2014-09-11	Name : The remote host is affected by multiple vulnerabilities. File : emc_documentum_content_server_ESA-2014-046.nasl - Type : ACT_GATHER_INFO
2014-09-11	Name : The remote host is affected by multiple vulnerabilities. File : emc_documentum_content_server_ESA-2014-064.nasl - Type : ACT_GATHER_INFO
2014-09-11	Name : The remote host is affected by multiple vulnerabilities. File : emc_documentum_content_server_ESA-2014-079.nasl - Type : ACT_GATHER_INFO
2014-08-21	Name : The remote host is affected by a privilege escalation vulnerability. File : emc_documentum_d2_ESA-2014-067.nasl - Type : ACT_GATHER_INFO
2014-06-06	Name : The remote host is affected by a privilege escalation vulnerability. File : emc_documentum_d2_ESA-2014-045.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-12-18 00:21:46	Multiple Updates
2014-12-17 09:26:59	Multiple Updates
2014-12-15 21:22:30	First insertion

Global Informations

Type	Count
CWE ID(s)	11
CPE ID(s)	40
IAVM(s)	1
Snort® Rule(s)	1
Nessus® Exploit(s)	8

	Related
9	CVE-2014-4629
9	CVE-2014-4626
9	CVE-2014-2504
8.5	CVE-2014-4618
8.5	CVE-2014-2515
8.5	CVE-2014-2507
8.2	CVE-2014-2514
8.2	CVE-2014-2513
7.1	CVE-2014-4622
6.8	CVE-2014-2518
6.3	CVE-2014-2520
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 11 more Alert(s)