EMC Documentum Content Server Multiple Privilege Escalation Vulnerabilities (ESA-2014-091)
High Nessus Plugin ID 77864
SynopsisThe remote host is affected by multiple privilege escalation vulnerabilities.
DescriptionThe remote host is running a version of EMC Documentum Content Server that is affected by multiple vulnerabilities :
- A privilege escalation vulnerability exists due to improper handling of system objects that allows a user to escalate their privileges to super-user status.
- A privilege escalation vulnerability exists due to improper handling of subgroups in the 'dm_superusers' group and other privileged groups. A user with sysadmin privileges can escalate their privileges to super-user status. (CVE-2014-4622)
SolutionApply the relevant patch referenced in the vendor advisory.