CVSS: 4.3EPSS: 2%CPEs: 1EXPL: 0CVE-2007-4161
https://notcve.org/view.php?id=CVE-2007-4161
rvd in TIBCO Rendezvous (RV) 7.5.2, when -no-lead-wc is omitted, might allow remote attackers to cause a denial of service (network instability) via a subject name with a leading (1) '*' (asterisk) or (2) '>' (greater than) wildcard character. rvd en TIBCO Rendezvous (RV) 7.5.2, cuando se omite -no-lead-wc, podría permitir a atacantes remotos provocar una denegación de servicio (inestabilidad de red) a través de un nombre de asunto con un carácter comodín principal (1) '*' (asterisco) o (2) '>' (mayor que). • http://archives.neohapsis.com/archives/fulldisclosure/2007-07/0620.html http://osvdb.org/37681 http://secunia.com/advisories/26337 http://www.irmplc.com/content/pdfs/Security_Testing_Enterprise_Messaging_Systems.pdf http://www.securitytracker.com/id?1018512 http://www.vupen.com/english/advisories/2007/2814 •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 1CVE-2007-4160
https://notcve.org/view.php?id=CVE-2007-4160
The default configuration of TIBCO Rendezvous (RV) 7.5.2 clients, when -no-multicast is omitted, uses a multicast group as the destination for a network message, which might make it easier for remote attackers to capture message contents by sniffing the network. La configuración por defecto de los clientes TIBCO Rendezvous (RV) 7.5.2, cuando se omite el -no-multicast (multidifusión), utiliza un grupo de multicast como el destinatario de un mensaje de red, lo que puede facilitar a los atacantes remotos la captura de mensajes de contenido mediante un rastreador de red. • http://archives.neohapsis.com/archives/fulldisclosure/2007-07/0620.html http://osvdb.org/46992 http://www.irmplc.com/content/pdfs/Security_Testing_Enterprise_Messaging_Systems.pdf http://www.securitytracker.com/id?1018512 http://www.vupen.com/english/advisories/2007/2814 •
CVSS: 1.2EPSS: 0%CPEs: 1EXPL: 2CVE-2006-4676 – TIBCO Rendezvous 7.4.11 - Password Extractor
https://notcve.org/view.php?id=CVE-2006-4676
TIBCO RendezVous 7.4.11 and earlier logs base64-encoded usernames and passwords in rvrd.db, which allows local users to obtain sensitive information by decoding the log file. Los registros de TIBCO RendezVous 7.4.11 y anteriores de los nombres de usuarios y contraseñas codificados en base64 en rvrd.db, el cual permite a un usuario local obtener informaciòn sensible a través de la decodificación del archvio de registro. • https://www.exploit-db.com/exploits/2284 http://secunia.com/advisories/21748 http://www.securityfocus.com/bid/19883 http://www.vupen.com/english/advisories/2006/3497 •
CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2006-2829
https://notcve.org/view.php?id=CVE-2006-2829
Buffer overflow in Hawk Monitoring Agent (HMA) for TIBCO Hawk before 4.6.1 and TIBCO Runtime Agent (TRA) before 5.4 allows authenticated users to execute arbitrary code via the configuration for tibhawkhma. • http://secunia.com/advisories/20431 http://securitytracker.com/id?1016223 http://www.kb.cert.org/vuls/id/620516 http://www.securityfocus.com/bid/18300 http://www.tibco.com/resources/mk/hawk_security_advisory.txt http://www.vupen.com/english/advisories/2006/2156 https://exchange.xforce.ibmcloud.com/vulnerabilities/26938 •
CVSS: 7.5EPSS: 8%CPEs: 3EXPL: 0CVE-2006-2830
https://notcve.org/view.php?id=CVE-2006-2830
Buffer overflow in TIBCO Rendezvous before 7.5.1, TIBCO Runtime Agent (TRA) before 5.4, and Hawk before 4.6.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the HTTP administrative interface. • http://secunia.com/advisories/20452 http://securitytracker.com/id?1016145 http://www.kb.cert.org/vuls/id/999884 http://www.securityfocus.com/bid/18301 http://www.tibco.com/resources/mk/rendezvous_security_advisory.txt http://www.vupen.com/english/advisories/2006/2155 https://exchange.xforce.ibmcloud.com/vulnerabilities/26939 •