CVE-2014-2543

EUVD-2014-2578
Buffer overflow in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messaging Appliance before 8.7.1, and Substation ES before 2.8.1 allows remote attackers to execute arbitrary code by leveraging access to a directly connected client and transmitting crafted data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
Affected Products (NVD)
VendorProductVersion
tibcorendezvous
𝑥
≤ 8.4.1
tibcorendezvous
7.4.11
tibcorendezvous
7.5.1
tibcorendezvous
7.5.2
tibcorendezvous
7.5.3
tibcorendezvous
7.5.4
tibcorendezvous
8.2.1
tibcorendezvous
8.3.0
tibcorendezvous
8.3.1
tibcorendezvous
8.10
tibcosubstantiation_es
𝑥
≤ 2.8.0
tibcomessaging_appliance
𝑥
≤ 8.7.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/66744
http://www.securitytracker.com/id/1030070
http://www.tibco.com/mk/advisory.jsp
http://www.tibco.com/multimedia/rendezvous_advisory_20140408_tcm8-20763.txt
http://www.securityfocus.com/bid/66744
http://www.securitytracker.com/id/1030070
http://www.tibco.com/mk/advisory.jsp
http://www.tibco.com/multimedia/rendezvous_advisory_20140408_tcm8-20763.txt