CVE-2016-3628

8.8HIGH

Key Information:

Vendor: Tibco
Status: Enterprise Message Service Appliance Firmware
Vendor: CVE Published:; 20 April 2016

Summary

Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service (EMS) before 8.3.0 and EMS Appliance before 2.4.0 allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via crafted inbound data.

References

http://www.tibco.com/mk/advisory.jsp

x_refsource_CONFIRM

http://www.tibco.com/assets/blt8a2d9978616c21fe/2016-001-...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 20, 2016
Vulnerability Reserved
Mar 21, 2016

Collectors

NVD DatabaseMitre Database