Multiple Buffer Overflow Vulnerabilities in TIBCO Hawk Products
CVE-2008-3338

Currently unrated

Key Information:

Vendor: Tibco
Status: Iprocess Engine; Hawk; Runtime Agent; Mainframe Service Tracker
Vendor: CVE Published:; 13 August 2008

Summary

Multiple buffer overflow vulnerabilities exist in the TIBCO Hawk suite, specifically in the AMI C library (libtibhawkami) and the Hawk HMA (tibhawkhma). These vulnerabilities allow remote attackers to exploit the affected components prior to their respective updates, potentially leading to arbitrary code execution through specially crafted messages. Organizations using affected versions should prioritize applying security patches to mitigate risks.

References

http://www.vupen.com/english/advisories/2008/2448

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/44604

vdb-entryx_refsource_XF

http://secunia.com/advisories/31618

third-party-advisoryx_refsource_SECUNIA

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 13, 2008
Vulnerability Reserved
Jul 27, 2008