DFS Security Advisory

Last night, EMC published a security advisory (ESA) for DFS.  The issues is:

“The DFS server may be vulnerable to malicious attacks that may allow access to content on the DFS file system. This is due to the way the DFS web service is used to upload content.”

This vulnerability is present in all versions of DFS v6.5 – v7.1.  The remedy is to apply one of the patches listed in the ESA.  Interesting that all the patches mentioned for DFS v6.x are a few versions out of date.

Advertisements

About Scott
I have been implementing Documentum solutions since 1997. In 2005, I published a book about developing Documentum solutions for the Documentum Desktop Client (ISBN 0595339689). In 2010, I began this blog as a record of interesting and (hopefully) helpful bits of information related to Documentum, and as a creative outlet.

One Response to DFS Security Advisory

  1. >Interesting that all the patches mentioned for DFS v6.x are a few versions out of date.

    EMC does not announce vulnerabilities until remedy is ready for all supported releases.

    Like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: