Rendezvous Security Vulnerabilities and Issues — Rendezvous CVE List

Lucene search

TibcoRendezvous

5 matches found

CVE•added 2007/08/03 9:17 p.m.•42 views

CVE-2007-4161

rvd in TIBCO Rendezvous (RV) 7.5.2, when -no-lead-wc is omitted, might allow remote attackers to cause a denial of service (network instability) via a subject name with a leading (1) '*' (asterisk) or (2) '>' (greater than) wildcard character.

4.3CVSS6.7AI score0.0098EPSS

CVE•added 2007/08/03 9:17 p.m.•39 views

CVE-2007-4160

The default configuration of TIBCO Rendezvous (RV) 7.5.2 clients, when -no-multicast is omitted, uses a multicast group as the destination for a network message, which might make it easier for remote attackers to capture message contents by sniffing the network.

5CVSS6.6AI score0.00357EPSS

CVE•added 2007/08/03 9:17 p.m.•38 views

CVE-2007-4162

TIBCO Rendezvous (RV) 7.5.2 does not protect confidentiality or integrity of inter-daemon communication, which allows remote attackers to capture and spoof traffic.

7.8CVSS6.6AI score0.00366EPSS

CVE•added 2007/08/03 9:17 p.m.•33 views

CVE-2007-4158

Memory leak in TIBCO Rendezvous (RV) daemon (rvd) 7.5.2, 7.5.3 and 7.5.4 allows remote attackers to cause a denial of service (memory consumption) via a packet with a length field of zero, a different vulnerability than CVE-2006-2830.

7.8CVSS6.5AI score0.06884EPSS

CVE•added 2007/08/03 9:17 p.m.•33 views

CVE-2007-4159

index.html in the HTTP administration interface in certain daemons in TIBCO Rendezvous (RV) 7.5.2 allows remote attackers to obtain sensitive information, such as a user name and IP addresses, via a direct request.

5CVSS6.4AI score0.00357EPSS