CVSS: 4.0EPSS: 0%CPEs: 5EXPL: 0CVE-2012-0396
https://notcve.org/view.php?id=CVE-2012-0396
EMC Documentum xPlore 1.0, 1.1 before P07, and 1.2 does not properly enforce the requirement for BROWSE permission, which allows remote authenticated users to determine the existence of an object, or read object metadata, via a search. EMC Documentum xplore v1.0, v1.1 antes de vP07, y v1.2 no se aplican correctamente el requisito del permiso BROWSE, lo que permite determinar la existencia de un objeto o leer los metadatos del objeto a usuarios remotos autenticados, a través de una búsqueda. • http://archives.neohapsis.com/archives/bugtraq/2012-02/0020.html http://secunia.com/advisories/47920 http://securitytracker.com/id?1026639 http://www.securityfocus.com/bid/51863 https://exchange.xforce.ibmcloud.com/vulnerabilities/72994 • CWE-264: Permissions, Privileges, and Access Controls •