Local Privilege Escalation in TIBCO Rendezvous and EMS Products
CVE-2011-0649

Currently unrated

Key Information:

Vendor: Tibco
Status: Rendezvous
Vendor: CVE Published:; 4 February 2011

What is CVE-2011-0649?

Multiple unspecified vulnerabilities exist in various TIBCO products including Rendezvous and Enterprise Message Service. When running on Unix systems, these vulnerabilities enable local users to escalate their privileges to root. The affected components include Rendezvous Routing Daemon, Rendezvous Secure Daemon, Rendezvous Secure Routing Daemon, and EMS Server, potentially exposing critical system functions to unauthorized users, thereby heightening security risks.

References

http://secunia.com/advisories/43174

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/43160

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2011/0269

vdb-entryx_refsource_VUPEN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 4, 2011
Vulnerability Reserved
Jan 25, 2011

Tibco

What is CVE-2011-0649?

References

Timeline