Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2544

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-2544
Last Modified 10 Apr 2014 11:13:37
Published 09 Apr 2014 08:55:09
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-2544

Summary

Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4, 4.5.x before 4.5.1, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.2; Spotfire Professional 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Web Player 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Automation Services 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Deployment Kit 4.0.x before 4.0.4, 4.5.x before 4.5.2, 5.0.x before 5.0.2, 5.5.x before 5.5.1, and 6.x before 6.0.1; Spotfire Desktop 6.x before 6.0.1; and Spotfire Analyst 6.x before 6.0.1 allows remote attackers to execute arbitrary code via unknown vectors.

Vulnerable Systems

Application

  • Tibco Analyst 6.0.0

  • Tibco Automation Services 4.0.3

  • Tibco Automation Services 4.5.0

  • Tibco Automation Services 4.5.1

  • Tibco Automation Services 5.0.0

  • Tibco Automation Services 5.0.1

  • Tibco Automation Services 5.5.0

  • Tibco Automation Services 6.0.0

  • Tibco Deployment Kit 4.0.3

  • Tibco Deployment Kit 4.5.0

  • Tibco Deployment Kit 4.5.1

  • Tibco Deployment Kit 5.0.0

  • Tibco Deployment Kit 5.0.1

  • Tibco Deployment Kit 5.5.0

  • Tibco Deployment Kit 6.0.0

  • Tibco Desktop 6.0.0

  • Tibco Spotfire Professional 4.0.3

  • Tibco Spotfire Professional 4.5.0

  • Tibco Spotfire Professional 4.5.1

  • Tibco Spotfire Professional 5.0.0

  • Tibco Spotfire Professional 5.0.1

  • Tibco Spotfire Professional 5.5.0

  • Tibco Spotfire Professional 6.0.0

  • Tibco Spotfire Server 3.3.3

  • Tibco Spotfire Server 4.5.0

  • Tibco Spotfire Server 5.0.0

  • Tibco Spotfire Server 5.0.1

  • Tibco Spotfire Server 5.5.0

  • Tibco Spotfire Server 6.0.0

  • Tibco Spotfire Server 6.0.1

  • Tibco Web Player 4.0.3

  • Tibco Web Player 4.5.0

  • Tibco Web Player 4.5.1

  • Tibco Web Player 5.0.0

  • Tibco Web Player 5.0.1

  • Tibco Web Player 5.5.0

  • Tibco Web Player 6.0.0


References

CONFIRM - http://www.tibco.com/multimedia/spotfire_advisory_20140409_tcm8-20764.txt

CONFIRM - http://www.tibco.com/mk/advisory.jsp


Last Updated: 27 May 2016 11:04:53