Privilege Escalation via Log File in EMC Documentum Content Server

Privilege Escalation via Log File in EMC Documentum Content Server

CVE-2015-4535 · HIGH Severity

AV:N/AC:M/AU:S/C:P/I:P/A:C

Java Method Server (JMS) in EMC Documentum Content Server before 6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P02, when __debug_trace__ is configured, allows remote authenticated users to gain super-user privileges by leveraging the ability to read a log file containing a login ticket.

Learn more about our Cis Benchmark Audit For Server Software.