Back to search
CVE-2017-14525
Published: Sep 27, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
Multiple open redirect vulnerabilities in OpenText Documentum Webtop 6.8.0160.0073 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a (1) URL in the startat parameter to xda/help/en/default.htm or (2) /%09/ (slash encoded horizontal tab slash) followed by a domain in the redirectUrl parameter to xda/component/virtuallinkconnect.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20170925 OpenText Documentum Administrator and Webtop - Open Redirection
mailing-list
x_refsource_FULLDISC
https://knowledge.opentext.com/knowledge/llisapi.dll/Open/68982774
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now