CVE-2013-0939

EUVD-2013-0950
EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, Documentum Taskspace before 6.7 SP2, and Documentum Records Manager before 6.7 SP2 allow remote attackers to obtain sensitive information via vectors involving cross-origin frame navigation, related to a "Cross Frame Scripting" issue.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
Affected Products (NVD)
VendorProductVersion
emcdocumentum_records_manager
6.7
emcdocumentum_records_manager
6.7:sp1
emcdocumentum_taskspace
6.7
emcdocumentum_taskspace
6.7:sp1
emcdocumentum_wdk
6.7
emcdocumentum_wdk
6.7:sp1
emcdocumentum_webtop
6.7
emcdocumentum_webtop
6.7:sp1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2013-05/0037.html
http://archives.neohapsis.com/archives/bugtraq/2013-05/0037.html