Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4160

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-4160
Last Modified 07 Mar 2011 09:57:54
Published 03 Aug 2007 05:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4160

Summary

The default configuration of TIBCO Rendezvous (RV) 7.5.2 clients, when -no-multicast is omitted, uses a multicast group as the destination for a network message, which might make it easier for remote attackers to capture message contents by sniffing the network.

Vulnerable Systems

Application

  • Tibco Rendezvous 7.5.2


References

VUPEN - ADV-2007-2814

MISC - http://www.irmplc.com/content/pdfs/Security_Testing_Enterprise_Messaging_Systems.pdf

OSVDB - 46992

FULLDISC - 20070730 Security Testing Enterprise Messaging Systems

SECTRACK - 1018512


Last Updated: 27 May 2016 10:45:46