CVE-2014-2543

Buffer overflow in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messaging Appliance before 8.7.1, and Substation ES before 2.8.1 allows remote attackers to execute arbitrary code by leveraging access to a directly connected client and transmitting crafted data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
VendorProductVersion
tibcorendezvous
𝑥
≤ 8.4.1
tibcorendezvous
7.4.11
tibcorendezvous
7.5.1
tibcorendezvous
7.5.2
tibcorendezvous
7.5.3
tibcorendezvous
7.5.4
tibcorendezvous
8.2.1
tibcorendezvous
8.3.0
tibcorendezvous
8.3.1
tibcorendezvous
8.10
tibcosubstantiation_es
𝑥
≤ 2.8.0
tibcomessaging_appliance
𝑥
≤ 8.7.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/66744
http://www.securitytracker.com/id/1030070
http://www.tibco.com/mk/advisory.jsp
http://www.tibco.com/multimedia/rendezvous_advisory_20140408_tcm8-20763.txt
http://www.securityfocus.com/bid/66744
http://www.securitytracker.com/id/1030070
http://www.tibco.com/mk/advisory.jsp
http://www.tibco.com/multimedia/rendezvous_advisory_20140408_tcm8-20763.txt