1. Home
  2. CVE Database
  3. CVE-2008-0656
HIGH · 10.0

CVE-2008-0656

Unrestricted file upload vulnerability in dmclTrace.jsp in EMC Documentum Administrator 5.3.0.313 and Webtop 5.3.0.317 allows remote attackers to overwrite arbitrary files via the filename attribute.

Vulnerability Description

Unrestricted file upload vulnerability in dmclTrace.jsp in EMC Documentum Administrator 5.3.0.313 and Webtop 5.3.0.317 allows remote attackers to overwrite arbitrary files via the filename attribute.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE

Affected Products

VendorProductVersions
EmcDocumentum Administrator4.2.8
EmcDocumentum Webtop5.2.5

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2008-0656?

CVE-2008-0656 is a vulnerability with a CVSS score of 10.0 (HIGH). Unrestricted file upload vulnerability in dmclTrace.jsp in EMC Documentum Administrator 5.3.0.313 and Webtop 5.3.0.317 allows remote attackers to overwrite arbitrary files via the filename attribute.

How severe is CVE-2008-0656?

CVE-2008-0656 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-0656?

Check the references section above for vendor advisories and patch information. Affected products include: Emc Documentum Administrator, Emc Documentum Webtop.