Lucene search

MitreCVE-2014-2543

HistoryApr 08, 2014 - 11:47 p.m.

CVE-2014-2543

2014-04-0823:47:28

CWE-119

mitre

web.nvd.nist.gov

cve-2014-2543

buffer overflow

tibco rendezvous

rendezvous daemon

rendezvous routing daemon

rendezvous secure daemon

remote code execution

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.034

Percentile

91.4%

JSON

Buffer overflow in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messaging Appliance before 8.7.1, and Substation ES before 2.8.1 allows remote attackers to execute arbitrary code by leveraging access to a directly connected client and transmitting crafted data.

Affected configurations

Nvd

Node

tibcorendezvousRange≤8.4.1

tibcorendezvousMatch7.4.11

tibcorendezvousMatch7.5.1

tibcorendezvousMatch7.5.2

tibcorendezvousMatch7.5.3

tibcorendezvousMatch7.5.4

tibcorendezvousMatch8.2.1

tibcorendezvousMatch8.3.0

tibcorendezvousMatch8.3.1

tibcorendezvousMatch8.10

tibcosubstantiation_esRange≤2.8.0

tibcomessaging_applianceRange≤8.7.0

VendorProductVersionCPE
tibcorendezvous*cpe:2.3:a:tibco:rendezvous:*:*:*:*:*:*:*:*
tibcorendezvous7.4.11cpe:2.3:a:tibco:rendezvous:7.4.11:*:*:*:*:*:*:*
tibcorendezvous7.5.1cpe:2.3:a:tibco:rendezvous:7.5.1:*:*:*:*:*:*:*
tibcorendezvous7.5.2cpe:2.3:a:tibco:rendezvous:7.5.2:*:*:*:*:*:*:*
tibcorendezvous7.5.3cpe:2.3:a:tibco:rendezvous:7.5.3:*:*:*:*:*:*:*
tibcorendezvous7.5.4cpe:2.3:a:tibco:rendezvous:7.5.4:*:*:*:*:*:*:*
tibcorendezvous8.2.1cpe:2.3:a:tibco:rendezvous:8.2.1:*:*:*:*:*:*:*
tibcorendezvous8.3.0cpe:2.3:a:tibco:rendezvous:8.3.0:*:*:*:*:*:*:*
tibcorendezvous8.3.1cpe:2.3:a:tibco:rendezvous:8.3.1:*:*:*:*:*:*:*
tibcorendezvous8.10cpe:2.3:a:tibco:rendezvous:8.10:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tibco	rendezvous	*	cpe:2.3:a:tibco:rendezvous::::::::
tibco	rendezvous	7.4.11	cpe:2.3:a:tibco:rendezvous:7.4.11:::::::*
tibco	rendezvous	7.5.1	cpe:2.3:a:tibco:rendezvous:7.5.1:::::::*
tibco	rendezvous	7.5.2	cpe:2.3:a:tibco:rendezvous:7.5.2:::::::*
tibco	rendezvous	7.5.3	cpe:2.3:a:tibco:rendezvous:7.5.3:::::::*
tibco	rendezvous	7.5.4	cpe:2.3:a:tibco:rendezvous:7.5.4:::::::*
tibco	rendezvous	8.2.1	cpe:2.3:a:tibco:rendezvous:8.2.1:::::::*
tibco	rendezvous	8.3.0	cpe:2.3:a:tibco:rendezvous:8.3.0:::::::*
tibco	rendezvous	8.3.1	cpe:2.3:a:tibco:rendezvous:8.3.1:::::::*
tibco	rendezvous	8.10	cpe:2.3:a:tibco:rendezvous:8.10:::::::*

Rows per page:

1-10 of 121

References

www.securityfocus.com/bid/66744

www.securitytracker.com/id/1030070

www.tibco.com/mk/advisory.jsp

www.tibco.com/multimedia/rendezvous_advisory_20140408_tcm8-20763.txt

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.1

Confidence

Low

EPSS

0.034

Percentile

91.4%

JSON

Related for CVE-2014-2543