PT-2007-5356 · Tibco · Tibco Rendezvous

Publicado

2007-08-03

Atualizado

2011-03-08

CVE-2007-4160

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions TIBCO Rendezvous (RV) version 7.5.2

Description The default configuration of TIBCO Rendezvous (RV) clients might make it easier for remote attackers to capture message contents by sniffing the network, as it uses a multicast group as the destination for a network message when the -no-multicast option is omitted.

Recommendations For TIBCO Rendezvous (RV) version 7.5.2, consider including the -no-multicast option to prevent the use of a multicast group as the destination for network messages, thereby minimizing the risk of message capture by remote attackers.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-4160

Produtos afetados

Tibco Rendezvous

PT-2007-5356 · Tibco · Tibco Rendezvous

CVE-2007-4160

Identificadores relacionados

Produtos afetados

Referências · 6