CVE-2010-2896

Currently unrated

Key Information:

Vendor
IBM
Status
Filenet Content Manager
Vendor
CVE Published:
28 July 2010

Summary

IBM FileNet Content Manager (CM) 4.0.0, 4.0.1, 4.5.0, and 4.5.1 before FP4 does not properly manage the InheritParentPermissions setting during an upgrade from 3.x, which might allow attackers to bypass intended folder permissions via unspecified vectors.

References

http://www.vupen.com/english/advisories/2010/1847
vdb-entryx_refsource_VUPEN
http://www-01.ibm.com/support/docview.wss?uid=swg21441225
x_refsource_CONFIRM
http://secunia.com/advisories/40614
third-party-advisoryx_refsource_SECUNIA

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.