Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1703

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-1703
Last Modified 07 Mar 2011 10:07:30
Published 11 Apr 2008 06:05:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-1703

Summary

Multiple buffer overflows in TIBCO Software Rendezvous before 8.1.0, as used in multiple TIBCO products, allow remote attackers to execute arbitrary code via a crafted message.

Vulnerable Systems

Application

  • Tibco Adapter Files Z Os 4.4.1

  • Tibco Hawk 4.8.0

  • Tibco Iprocess Engine 10.3.0

  • Tibco Iprocess Engine 10.3.1

  • Tibco Iprocess Engine 10.3.2

  • Tibco Iprocess Engine 10.3.3

  • Tibco Iprocess Engine 10.3.4

  • Tibco Iprocess Engine 10.3.5

  • Tibco Iprocess Engine 10.4

  • Tibco Iprocess Engine 10.4.1

  • Tibco Iprocess Engine 10.5

  • Tibco Iprocess Engine 10.6

  • Tibco Iprocess Engine 10.6.0

  • Tibco Iprocess Engine 10.6.1

  • Tibco Rendezvous 8.10

  • Tibco Rendezvous Datasecurity 2.1.6

  • Tibco Rendezvous Tx 2.04

  • Tibco Runtime Agent 5.5.4

  • Tibco Substantiation Es 2.4.0


References

XF - tibco-rendezvous-multiple-code-execution(41760)

VUPEN - ADV-2008-1190

VUPEN - ADV-2008-1189

CONFIRM - http://www.tibco.com/resources/mk/rendezvous_security_advisory_20080409.txt

SECTRACK - 1019826

BID - 28717

OSVDB - 44269

SECUNIA - 29774


Last Updated: 27 May 2016 10:47:38