CVE-2008-3338

Currently unrated

Key Information:

Vendor: Tibco
Status: Iprocess Engine; Hawk; Runtime Agent; Mainframe Service Tracker
Vendor: CVE Published:; 13 August 2008

Summary

Multiple buffer overflows in TIBCO Hawk (1) AMI C library (libtibhawkami) and (2) Hawk HMA (tibhawkhma), as used in TIBCO Hawk before 4.8.1; Runtime Agent (TRA) before 5.6.0; iProcess Engine 10.3.0 through 10.6.2 and 11.0.0; and Mainframe Service Tracker before 1.1.0 might allow remote attackers to execute arbitrary code via a crafted message.

References

http://www.vupen.com/english/advisories/2008/2448

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/44604

vdb-entryx_refsource_XF

http://secunia.com/advisories/31618

third-party-advisoryx_refsource_SECUNIA

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 13, 2008
Vulnerability Reserved
Jul 27, 2008

Collectors

NVD DatabaseMitre Database