9 matches found
CVE-2006-2830
The CVE-2006-2830 entry describes a buffer-overflow vulnerability in the HTTP administrative interface of TIBCO Rendezvous before 7.5.1, TIBCO Runtime Agent (TRA) before 5.4, and Hawk before 4.6.1. Remote attackers could trigger a denial of service and possibly execute arbitrary code via the HTTP...
CVE-2023-26219
The CVE-2023-26219 issue affects TIBCO Hawk family components: TIBCO Hawk, Hawk Distribution for Silver Fabric, Operational Intelligence Hawk RedTail, and Runtime Agent. The vulnerability allows an attacker who can read the Hawk Console/Agent logs to obtain credentials used to access EMS servers....
CVE-2008-3338
CVE-2008-3338 : Multiple buffer overflows in TIBCO Hawk components (libtibhawkami AMI C library and tibhawkhma Hawk HMA) allow remote code execution via a crafted message. Affected products/versions include TIBCO Hawk before 4.8.1, Runtime Agent (TRA) before 5.6.0, iProcess Engine 10.3.0–10.6.2 a...
CVE-2008-1703
CVE-2008-1703 maps to multiple buffer overflows in TIBCO Rendezvous and related components (rvd, rvrd, rvsrd, rvsd, rvcache, rva, rvrad, rvperfm/rvperfs, libtibrv, libtibrvipm, rvacld, rvtxd, procmgr/pmsulib, tibssxfr, sxf3rpub, sxf3rsub). The root cause is buffer overflows when processing inboun...
CVE-2021-28827
CVE-2021-28827 describes a stored cross-site scripting vulnerability in the Administration GUI components of TIBCO Administrator - Enterprise Edition (including Silver Fabric distributions) and TIBCO Runtime Agent (and z/Linux variants). The issue allows an unauthenticated attacker, via social en...
CVE-2006-2829
CVE-2006-2829 affects TIBCO Hawk’s Hawk Monitoring Agent (HMA) prior to version 4.6.1 and TIBCO Runtime Agent (TRA) prior to 5.4. A buffer overflow in the tibhawkhma configuration allows authenticated users to execute arbitrary code. The impact is described as complete confidentiality, integrity,...
CVE-2018-5434
The CVE-2018-5434 issue affects TIBCO Runtime Agent (including TIBCO Designer) and the TIBCO Runtime Agent for z/Linux. The root cause is XML external entity (XXE) expansion, allowing a malicious user to disclose host machine information. Affected releases include TIBCO Runtime Agent up to 5.10.0...
CVE-2011-0649
TIBCO CVE-2011-0649 affects Rendezvous and Enterprise Message Service components on Unix: Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), Rendezvous Secure Routing Daemon (rvsrd), and EMS Server (tibemsd) across Rendezvous 8.2.1–8.3.0, EMS 5.1.0–6.0.0, TRA 5.6.2–5.7.0, Silver B...
CVE-2010-0184
Summary: CVE-2010-0184 affects the (1) domainutility and (2) domainutilitycmd components in TIBCO Domain Utility within TIBCO Runtime Agent prior to 5.6.2 . The vulnerability is due to weak permissions on domain properties files, which could allow local users to obtain domain administrator creden...