Vulnerability Description
EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allow remote attackers to obtain sensitive information via vectors involving cross-origin frame navigation, related to a "Cross Frame Scripting" issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Emc | Documentum Records Manager | 6.7 |
| Emc | Documentum Taskspace | 6.7 |
| Emc | Documentum Wdk | 6.7 |
| Emc | Documentum Webtop | 6.7 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/bugtraq/2013-05/0037.html
- http://archives.neohapsis.com/archives/bugtraq/2013-05/0037.html
FAQ
What is CVE-2013-0939?
CVE-2013-0939 is a vulnerability with a CVSS score of 5.8 (MEDIUM). EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allow remote attackers to obtain sensitive infor...
How severe is CVE-2013-0939?
CVE-2013-0939 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-0939?
Check the references section above for vendor advisories and patch information. Affected products include: Emc Documentum Records Manager, Emc Documentum Taskspace, Emc Documentum Wdk, Emc Documentum Webtop.