CVE-2010-2896 Information

Description

IBM FileNet Content Manager (CM) 4.0.0 4.0.1 4.5.0 and 4.5.1 before FP4 does not properly manage the InheritParentPermissions setting during an upgrade from 3.x which might allow attackers to bypass intended folder permissions via unspecified vectors.

Reference

http://secunia.com/advisories/40614 http://www.vupen.com/english/advisories/2010/1847 http://www-01.ibm.com/support/docview.wss?uid=swg21441225