| ID |
CVE-2015-4535
|
| Sažetak |
Java Method Server (JMS) in EMC Documentum Content Server before 6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P02, when __debug_trace__ is configured, allows remote authenticated users to gain super-user privileges by leveraging the ability to read a log file containing a login ticket. |
| Reference |
|
| CVSS |
| Base: | 7.5 |
| Impact: | 8.5 |
| Exploitability: | 6.8 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| NETWORK |
MEDIUM |
SINGLE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| PARTIAL |
PARTIAL |
COMPLETE |
|
| CVSS vektor |
AV:N/AC:M/Au:S/C:P/I:P/A:C |
| Zadnje važnije ažuriranje |
21-09-2017 - 01:29 |
| Objavljeno |
20-08-2015 - 10:59 |
