CVE-2011-0649

EUVD-2011-0667
Multiple unspecified vulnerabilities in TIBCO Rendezvous 8.2.1 through 8.3.0, Enterprise Message Service (EMS) 5.1.0 through 6.0.0, Runtime Agent (TRA) 5.6.2 through 5.7.0, Silver BPM Service before 1.0.4, Silver CAP Service vebefore 1.0.2, and Silver BusinessWorks Service 1.0.0, when running on Unix systems, allow local users to gain root privileges via unknown vectors related to SUID and (1) Rendezvous Routing Daemon (rvrd), (2) Rendezvous Secure Daemon (rvsd), (3) Rendezvous Secure Routing Daemon (rvsrd), and (4) EMS Server (tibemsd).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 29%
Affected Products (NVD)
VendorProductVersion
tibcorendezvous
8.2.1
tibcorendezvous
8.3.0
tibcoenterprise_message_service
5.1.0
tibcoenterprise_message_service
5.1.1
tibcoenterprise_message_service
6.0.0
tibcoruntime_agent
5.6.2
tibcoruntime_agent
5.7.0
tibcosilver_bpm_service
𝑥
≤ 1.0.3
tibcosilver_bpm_service
1.0.1
tibcosilver_cap_service
𝑥
≤ 1.0.1
tibcosilver_cap_service
1.0.0
tibcosilver_businessworks_service
1.0.0
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/43160
http://secunia.com/advisories/43174
http://www.securityfocus.com/bid/46104
http://www.tibco.com/multimedia/rv_ems_security_advisory_20110201_tcm8-13185.txt
http://www.vupen.com/english/advisories/2011/0269
https://exchange.xforce.ibmcloud.com/vulnerabilities/65105
http://secunia.com/advisories/43160
http://secunia.com/advisories/43174
http://www.securityfocus.com/bid/46104
http://www.tibco.com/multimedia/rv_ems_security_advisory_20110201_tcm8-13185.txt
http://www.vupen.com/english/advisories/2011/0269
https://exchange.xforce.ibmcloud.com/vulnerabilities/65105