EMC Documentum Content Server Information Disclosure (ESA-2014-026)
Medium Nessus Plugin ID 77632
SynopsisThe remote host is affected by a privilege escalation vulnerability.
DescriptionThe remote host is running a version of EMC Documentum Content Server that is affected by an information disclosure vulnerability due to improper authorization checks. A remote, authenticated user can exploit this vulnerability to read metadata from folders outside of restricted folders configured for Content Server users.
SolutionApply the relevant patch referenced in the vendor advisory.