PT-2014-4774 · Tibco · Tibco Rendezvous+2
Publicado
2014-04-08
·
Atualizado
2015-08-11
·
CVE-2014-2543
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
TIBCO Rendezvous versions prior to 8.4.2
TIBCO Messaging Appliance versions prior to 8.7.1
TIBCO Substation ES versions prior to 2.8.1
Description
The issue is related to a buffer overflow in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd). This allows remote attackers to execute arbitrary code by transmitting crafted data to a directly connected client.
Recommendations
For TIBCO Rendezvous versions prior to 8.4.2, update to version 8.4.2 or later.
For TIBCO Messaging Appliance versions prior to 8.7.1, update to version 8.7.1 or later.
For TIBCO Substation ES versions prior to 2.8.1, update to version 2.8.1 or later.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Tibco Messaging Appliance
Tibco Rendezvous
Tibco Substation Es