EMC Documentum eRoom Indexing Server Hummingbird Client Connector Buffer Overflow

Critical Nessus Plugin ID 55732


A text indexing service on the remote host has a buffer overflow vulnerability.


The Hummingbird Client Connector, bundled with EMC Documentum eRoom's Indexing Server, has a buffer overflow vulnerability. Making an unspecified request can result in a stack-based buffer overflow. A remote, unauthenticated attacker could exploit this to execute arbitrary code.

Documentum eRoom versions 7.x are affected.


Upgrade to EMC Documentum eRoom 7.4.3.f or later.

See Also




Plugin Details

Severity: Critical

ID: 55732

File Name: emc_eroom_index_server_bof.nasl

Version: $Revision: 1.7 $

Type: remote

Agent: windows

Family: Windows

Published: 2011/07/29

Modified: 2015/01/12

Dependencies: 13855, 10456

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:emc:documentum_eroom

Required KB Items: SMB/Registry/Enumerated

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2011/07/15

Vulnerability Publication Date: 2011/07/15

Reference Information

CVE: CVE-2011-1741

BID: 48712

OSVDB: 73884