CVE-2008-0656

CVSS 10.0 - HIGH
Description

Unrestricted file upload vulnerability in dmclTrace.jsp in EMC Documentum Administrator 5.3.0.313 and Webtop 5.3.0.317 allows remote attackers to overwrite arbitrary files via the filename attribute.

Affected Products
7
Vendor Product Version
emc documentum_administrator 4.2.8
emc documentum_administrator 5.2.5
emc documentum_administrator 5.2.5_sp2
emc documentum_administrator 5.3.0.313
emc documentum_webtop 5.2.5
emc documentum_webtop 5.2.5_sp2
emc documentum_webtop 5.3.0.317
References
http://secunia.com/advisories/28810
http://securityreason.com/securityalert/3626
http://www.cybsec.com/vuln/CYBSEC-Security_Advisor...
http://www.securityfocus.com/archive/1/487603/100/...
http://www.securityfocus.com/bid/27632
http://www.securitytracker.com/id?1019305
http://www.vupen.com/english/advisories/2008/0439
http://secunia.com/advisories/28810
http://securityreason.com/securityalert/3626
http://www.cybsec.com/vuln/CYBSEC-Security_Advisor...
http://www.securityfocus.com/archive/1/487603/100/...
http://www.securityfocus.com/bid/27632
http://www.securitytracker.com/id?1019305
http://www.vupen.com/english/advisories/2008/0439
Weakness Types
CWE-20
CVE Information
CVE ID:
CVE-2008-0656
Published:
2008-02-07
Modified:
2026-04-23
CVSS Score:
10.0
Severity:
HIGH
Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C
Affected Vendors
emc
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL