PT-2007-5356 · Tibco · Tibco Rendezvous

Published

2007-08-03

Updated

2011-03-08

CVE-2007-4160

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions TIBCO Rendezvous (RV) version 7.5.2

Description The default configuration of TIBCO Rendezvous (RV) clients might make it easier for remote attackers to capture message contents by sniffing the network, as it uses a multicast group as the destination for a network message when the -no-multicast option is omitted.

Recommendations For TIBCO Rendezvous (RV) version 7.5.2, consider including the -no-multicast option to prevent the use of a multicast group as the destination for network messages, thereby minimizing the risk of message capture by remote attackers.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-4160

Affected Products

Tibco Rendezvous

PT-2007-5356 · Tibco · Tibco Rendezvous

CVE-2007-4160

Related Identifiers

Affected Products

References · 6