CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-3685

Directory traversal vulnerability in aws_tmxn.exe in the Admin Agent service in the server in EMC Documentum ApplicationXtender Workflow, possibly 5.40 SP1 and earlier, allows remote attackers to upload arbitrary files, and execute arbitrary code, via directory traversal sequences in requests to TCP port 2606.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.2%

CVSS Severity

CVSS v2 Score 10.0

References

http://secunia.com/advisories/37070
http://www.zerodayinitiative.com/advisories/ZDI-08-095/
http://secunia.com/advisories/37070
http://www.zerodayinitiative.com/advisories/ZDI-08-095/

Products affected by CVE-2008-3685

Emc » Documentum Applicationxtender Workflow Manager » Version: Any

cpe:2.3:a:emc:documentum_applicationxtender_workflow_manager:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-3685

Products

Pricing

Contact Us