CVE-2012-0396

Published: Feb 6, 2012Modified: Apr 29, 2026

4.0

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability: 8.0 / Impact: 2.9

Source: NVD

Description

EMC Documentum xPlore 1.0, 1.1 before P07, and 1.2 does not properly enforce the requirement for BROWSE permission, which allows remote authenticated users to determine the existence of an object, or read object metadata, via a search.

Affected (5)

Products: Emc: Documentum Xplore

1 product

Documentum Xplore

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Emc Documentum Xplore	Version 1.0
Emc Documentum Xplore	Version 1.1
Emc Documentum Xplore	Version 1.1 p01
Emc Documentum Xplore	Version 1.1 p03
Emc Documentum Xplore	Version 1.2

Related CWEs

References (10)

http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html

Source: security_alert@emc.com

http://secunia.com/advisories/47920

Source: security_alert@emc.com

Vendor Advisory

http://securitytracker.com/id?1026639

Source: security_alert@emc.com

http://www.securityfocus.com/bid/51863

Source: security_alert@emc.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/72994

Source: security_alert@emc.com

http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/47920

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1026639

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/51863

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/72994

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.