Information Disclosure Vulnerability in TIBCO Managed File Transfer Products
CVE-2015-5711

Currently unrated

Key Information:

Vendor: Tibco
Status: Managed File Transfer Internet Server
Vendor: CVE Published:; 29 September 2015

Summary

Certain versions of TIBCO's Managed File Transfer software, including the Internet Server and Command Center, as well as Slingshot and Vault, are susceptible to an information disclosure vulnerability. This weakness allows a remote authenticated user to craft specific HTTP requests that can enable access to sensitive information, potentially compromising data integrity and confidentiality.

References

http://www.tibco.com/assets/blt423f06fbac6ee0c6/2015-003-...

x_refsource_CONFIRM

http://www.tibco.com/mk/advisory.jsp

x_refsource_CONFIRM

http://www.securitytracker.com/id/1033678

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Sep 29, 2015
Vulnerability Reserved
Aug 2, 2015