A vulnerability in the TIBCO Rendezvous daemon components may allow a remote attacker to execute arbitrary code on an affected system.
TIBCO Rendezvous is a distributed messaging software platform. A buffer overflow vulnerability has been discovered in the HTTP administrative interface of several TIBCO Rendezvous daemon components. According to the vendor, the following products are affected:
The following components are affected:
A remote attacker may be able to execute arbitrary code on an affected system. The impact of exploitation varies depending on the operating system of the affected system, configuration options of the daemon, and the privileges of the user that invokes the daemon. TIBCO states the following: