Description
Directory traversal vulnerability in aws_tmxn.exe in the Admin Agent service in the server in EMC Documentum ApplicationXtender Workflow, possibly 5.40 SP1 and earlier, allows remote attackers to upload arbitrary files, and execute arbitrary code, via directory traversal sequences in requests to TCP port 2606.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-08-095/
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/37070
Scores
EPSS
0.0070
EPSS Percentile
72.3%
Details
CWE
CWE-22
Status
published
Products (1)
emc/documentum_applicationxtender_workflow_manager
< 5.40
Published
Oct 22, 2009
Tracked Since
Feb 18, 2026