CVE-2014-2507 consequences

CVE-2014-2507 (actually it’s still not fixed, technically CVE-2014-2506 is not fixed too, surprise!):

Certain methods in Documentum Content Server perform improper validation checks on input arguments. This may potentially be exploited by an authenticated malicious user to conduct shell injection attacks against these methods and perform unauthorized actions on Content Server.

Continue reading