Buffer Overflow in TIBCO Rendezvous and Related Daemons
CVE-2014-2543

Currently unrated

Key Information:

Vendor: Tibco
Status: Rendezvous; Messaging Appliance; Substantiation Es
Vendor: CVE Published:; 8 April 2014

Summary

A buffer overflow vulnerability exists in the TIBCO Rendezvous suite, affecting the Rendezvous Daemon, Rendezvous Routing Daemon, Rendezvous Secure Daemon, and Rendezvous Secure Routing Daemon. This issue can allow remote attackers to execute arbitrary code if they gain access to a directly connected client and send specially crafted data. Affected products include TIBCO Rendezvous versions prior to 8.4.2, Messaging Appliance versions before 8.7.1, and Substation ES versions before 2.8.1. Proper security measures should be taken to mitigate potential risks associated with this vulnerability.

References

http://www.tibco.com/multimedia/rendezvous_advisory_20140...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/66744

vdb-entryx_refsource_BID

http://www.tibco.com/mk/advisory.jsp

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 8, 2014
Vulnerability Reserved
Mar 18, 2014