Vulnerabilities > CVE-2006-4676 - Unspecified vulnerability in Tibco Rendezvous
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN tibco
exploit available
Summary
TIBCO RendezVous 7.4.11 and earlier logs base64-encoded usernames and passwords in rvrd.db, which allows local users to obtain sensitive information by decoding the log file.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | TIBCO Rendezvous <= 7.4.11 Password Extractor Local Exploit. CVE-2006-4676. Local exploit for windows platform |
| file | exploits/windows/local/2284.c |
| id | EDB-ID:2284 |
| last seen | 2016-01-31 |
| modified | 2006-09-01 |
| platform | windows |
| port | |
| published | 2006-09-01 |
| reporter | Andres Tarasco |
| source | https://www.exploit-db.com/download/2284/ |
| title | TIBCO Rendezvous <= 7.4.11 Password Extractor Local Exploit |
| type | local |
References
- http://secunia.com/advisories/21748
- http://secunia.com/advisories/21748
- http://www.securityfocus.com/bid/19883
- http://www.securityfocus.com/bid/19883
- http://www.vupen.com/english/advisories/2006/3497
- http://www.vupen.com/english/advisories/2006/3497
- https://www.exploit-db.com/exploits/2284
- https://www.exploit-db.com/exploits/2284