OpenText Documentum Content Server is prone to multiple security vulnerabilities.
An attacker can leverage these issues to obtain sensitive information, and execute arbitrary code with elevated privileges. Failed exploit attempts may result in a denial of service condition.
Information
CVE-2017-15013
CVE-2017-15014
CVE-2017-15276
Exploit
The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.
References:
- OpenText Homepage (OpenText)
- Multiple vulnerabilities in OpenText Documentum Content Server (Seclists)