CVE-2008-0656
EMC Documentum Administrator and Webtop - Arbitrary File Overwrite via dmclTrace.jsp
Title source: llmDescription
Unrestricted file upload vulnerability in dmclTrace.jsp in EMC Documentum Administrator 5.3.0.313 and Webtop 5.3.0.317 allows remote attackers to overwrite arbitrary files via the filename attribute.
References (7)
Core 7
Core References
Various Sources x_refsource_misc
http://www.cybsec.com/vuln/CYBSEC-Security_Advisory_Documentum_dmclTrace_Arbitrary_file_overwrite.pdf
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1019305
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/28810
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0439
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/27632
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/3626
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/487603/100/0/threaded
Scores
EPSS
0.0250
EPSS Percentile
85.5%
Details
CWE
CWE-20
Status
published
Products (7)
emc/documentum_administrator
4.2.8
emc/documentum_administrator
5.2.5
emc/documentum_administrator
5.2.5_sp2
emc/documentum_administrator
5.3.0.313
emc/documentum_webtop
5.2.5
emc/documentum_webtop
5.2.5_sp2
emc/documentum_webtop
5.3.0.317
Published
Feb 07, 2008
Tracked Since
Feb 18, 2026