TIBCO Rendezvous RVD Daemon Remote Denial Of Service Vulnerabilities
BID:25132
Info
TIBCO Rendezvous RVD Daemon Remote Denial Of Service Vulnerabilities
| Bugtraq ID: | 25132 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2007-4158 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 30 2007 12:00AM |
| Updated: | Dec 18 2007 08:04PM |
| Credit: | This issue was discovered by Information Research Management. |
| Vulnerable: |
TIBCO Rendezvous 7.5.4 TIBCO Rendezvous 7.5.3 TIBCO Rendezvous 7.5.2 |
| Not Vulnerable: |
TIBCO Rendezvous 8.0 |
Discussion
TIBCO Rendezvous RVD Daemon Remote Denial Of Service Vulnerabilities
The RVD daemon in TIBCO Rendezvous is prone to two remote denial-of-service vulnerabilities.
Successfully exploiting these issues allows remote attackers to consume excessive memory or to trigger network instability, leading to denial-of-service conditions.
Rendezvous 7.5.2, 7.4.3, and 7.5.4 are vulnerable to these issues; other versions may also be affected.
The RVD daemon in TIBCO Rendezvous is prone to two remote denial-of-service vulnerabilities.
Successfully exploiting these issues allows remote attackers to consume excessive memory or to trigger network instability, leading to denial-of-service conditions.
Rendezvous 7.5.2, 7.4.3, and 7.5.4 are vulnerable to these issues; other versions may also be affected.
Exploit / POC
TIBCO Rendezvous RVD Daemon Remote Denial Of Service Vulnerabilities
Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
TIBCO Rendezvous RVD Daemon Remote Denial Of Service Vulnerabilities
Solution:
The vendor released Rendezvous 8.0 to address some of these issues. Please see the references for more information.
Solution:
The vendor released Rendezvous 8.0 to address some of these issues. Please see the references for more information.
References
TIBCO Rendezvous RVD Daemon Remote Denial Of Service Vulnerabilities
References:
References:
- Security Testing Enterprise Messaging Systems (Information Risk Management)
- TIBCO Rendezvous Home Page (TIBCO)
- Advisory 025 TIBCO Rendezvous RVD Daemon Remote Memory Leak DoS (Information Risk Management)