CVE-2017-7221 — HIGH (8.8) — White Hats Nepal

Vulnerability Description

OpenText Documentum Content Server has an inadequate protection mechanism against SQL injection, which allows remote authenticated users to execute arbitrary code with super-user privileges by leveraging the availability of the dm_bp_transition docbase method with a user-created dm_procedure object, as demonstrated by use of a backspace character in an injected string. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2513.

CVSS Score

8.8

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Opentext	Documentum Content Server	-

Related Weaknesses (CWE)

CWE-89

References

http://seclists.org/fulldisclosure/2017/Apr/97ExploitMailing ListThird Party Advisory
http://www.securityfocus.com/bid/98038Third Party AdvisoryVDB Entry
https://www.exploit-db.com/exploits/41928/
http://seclists.org/fulldisclosure/2017/Apr/97ExploitMailing ListThird Party Advisory
http://www.securityfocus.com/bid/98038Third Party AdvisoryVDB Entry
https://www.exploit-db.com/exploits/41928/

FAQ

What is CVE-2017-7221?

CVE-2017-7221 is a vulnerability with a CVSS score of 8.8 (HIGH). OpenText Documentum Content Server has an inadequate protection mechanism against SQL injection, which allows remote authenticated users to execute arbitrary code with super-user privileges by leverag...

How severe is CVE-2017-7221?

CVE-2017-7221 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-7221?

Check the references section above for vendor advisories and patch information. Affected products include: Opentext Documentum Content Server.