CVE-2014-2544

Name of the Vulnerable Software and Affected Versions TIBCO Spotfire Server versions 3.3.x through 3.3.3, 4.5.x through 4.5.0, 5.0.x through 5.0.1, 5.5.x through 5.5.0, and 6.x through 6.0.1 TIBCO Spotfire Professional versions 4.0.x through 4.0.3, 4.5.x through 4.5.1, 5.0.x through 5.0.1, 5.5.x through 5.5.0, and 6.x through 6.0.0 TIBCO Spotfire Web Player versions 4.0.x through 4.0.3, 4.5.x through 4.5.1, 5.0.x through 5.0.1, 5.5.x through 5.5.0, and 6.x through 6.0.0 TIBCO Spotfire Automation Services versions 4.0.x through 4.0.3, 4.5.x through 4.5.1, 5.0.x through 5.0.1, 5.5.x through 5.5.0, and 6.x through 6.0.0 TIBCO Spotfire Deployment Kit versions 4.0.x through 4.0.3, 4.5.x through 4.5.1, 5.0.x through 5.0.1, 5.5.x through 5.5.0, and 6.x through 6.0.0 TIBCO Spotfire Desktop version 6.x through 6.0.0 TIBCO Spotfire Analyst version 6.x through 6.0.0

Description The issue allows remote attackers to execute arbitrary code via unknown vectors.

Recommendations Update TIBCO Spotfire Server to version 3.3.4 or later, 4.5.1 or later, 5.0.2 or later, 5.5.1 or later, or 6.0.2 or later. Update TIBCO Spotfire Professional to version 4.0.4 or later, 4.5.2 or later, 5.0.2 or later, 5.5.1 or later, or 6.0.1 or later. Update TIBCO Spotfire Web Player to version 4.0.4 or later, 4.5.2 or later, 5.0.2 or later, 5.5.1 or later, or 6.0.1 or later. Update TIBCO Spotfire Automation Services to version 4.0.4 or later, 4.5.2 or later, 5.0.2 or later, 5.5.1 or later, or 6.0.1 or later. Update TIBCO Spotfire Deployment Kit to version 4.0.4 or later, 4.5.2 or later, 5.0.2 or later, 5.5.1 or later, or 6.0.1 or later. Update TIBCO Spotfire Desktop to version 6.0.1 or later. Update TIBCO Spotfire Analyst to version 6.0.1 or later.