Yesterday, when writing about privileged groups, I found out that privileged groups may be completely disabled by enabling DISABLE_PRIV_GRPS module in dm_docbase_config. So, what is a module and what modules does Content Server support? Continue reading
CVE-2014-2507 (actually it’s still not fixed, technically CVE-2014-2506 is not fixed too, surprise!):
Certain methods in Documentum Content Server perform improper validation checks on input arguments. This may potentially be exploited by an authenticated malicious user to conduct shell injection attacks against these methods and perform unauthorized actions on Content Server.