Buffer Overflow Vulnerability in TIBCO Rendezvous and Runtime Agent
CVE-2006-2830

Currently unrated

Key Information:

Vendor: Tibco
Status: Runtime Agent; Hawk; Rendezvous
Vendor: CVE Published:; 5 June 2006

Summary

A buffer overflow vulnerability has been identified in TIBCO Rendezvous prior to version 7.5.1, TIBCO Runtime Agent versions before 5.4, and TIBCO Hawk versions prior to 4.6.1. This flaw allows remote attackers to exploit the HTTP administrative interface, potentially leading to denial of service or execution of arbitrary code. Organizations using these products should assess their environments and apply relevant patches to mitigate the risk associated with this vulnerability.

References

http://www.kb.cert.org/vuls/id/999884

third-party-advisoryx_refsource_CERT-VN

https://exchange.xforce.ibmcloud.com/vulnerabilities/26939

vdb-entryx_refsource_XF

http://securitytracker.com/id?1016145

vdb-entryx_refsource_SECTRACK

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 5, 2006
Vulnerability Reserved
Jun 5, 2006