Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2543

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-2543
Last Modified 11 Aug 2015 10:44:13
Published 08 Apr 2014 07:47:28
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-2543

Summary

Buffer overflow in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messaging Appliance before 8.7.1, and Substation ES before 2.8.1 allows remote attackers to execute arbitrary code by leveraging access to a directly connected client and transmitting crafted data.

Vulnerable Systems

Application

  • Tibco Rendezvous 7.4.11

  • Tibco Rendezvous 7.5.1

  • Tibco Rendezvous 7.5.2

  • Tibco Rendezvous 7.5.3

  • Tibco Rendezvous 7.5.4

  • Tibco Rendezvous 8.10

  • Tibco Rendezvous 8.2.1

  • Tibco Rendezvous 8.3.0

  • Tibco Rendezvous 8.3.1

  • Tibco Rendezvous 8.4.1

  • Tibco Substantiation Es 2.8.0


References

CONFIRM - http://www.tibco.com/multimedia/rendezvous_advisory_20140408_tcm8-20763.txt

CONFIRM - http://www.tibco.com/mk/advisory.jsp

BID - 66744

SECTRACK - 1030070


Last Updated: 27 May 2016 11:04:53