CVE-2011-2739

Published: Nov 9, 2011Modified: Apr 29, 2026

8.5

Vector

AV:N/AC:M/Au:S/C:C/I:C/A:C

Exploitability: 6.8 / Impact: 10.0

Source: NVD

Description

The file-blocking feature in EMC Documentum eRoom 7.3.x and 7.4.x before 7.4.3.g does not properly restrict the uploading and opening of files with dangerous file types, which allows remote authenticated users to execute arbitrary code via an uploaded file.

Affected (4)

Products: Emc: Documentum Eroom

1 product

Documentum Eroom

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Emc Documentum Eroom	Version 7.3.0
Emc Documentum Eroom	Version 7.4.1
Emc Documentum Eroom	Version 7.4.2
Emc Documentum Eroom	Version 7.4.3

Related CWEs

References (4)

http://securityreason.com/securityalert/8528

Source: security_alert@emc.com

http://www.securityfocus.com/archive/1/520372

Source: security_alert@emc.com

http://securityreason.com/securityalert/8528

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/520372

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.