[<prev] [next>] [day] [month] [year] [list]
Message-Id: <20100304161636.CE8172803F@smtp.hushmail.com>
Date: Thu, 04 Mar 2010 11:16:36 -0500
From: dr_ch1na@...hmail.com
To: bugtraq@...urityfocus.com
Subject: Unspecified EMC Documentum Remote Code Execution Vulnerability
Dear List,
While they were arguing what the meaning of "responsible" is in
"responsible disclosure", I overheard that a critical pre-
authentication Remote Code Execution vulnerability affecting EMC
Documentum was silently reported to EMC in 2006. The vulnerability
was later silently fixed. No credit was given. No credit was taken.
No Metasploit module was developed.
If you are using Documentum to manage your intellectual properties,
you know what you should do. Many critical vulnerabilities were
silently
fixed. Your expensive VM tools don't have any information about
them. Whenever possible, keep your software up-to-date.
May the force be with you,
Dr. Ch1na
Powered by blists - more mailing lists