Vulnerabilities > CVE-2007-4161 - Denial-Of-Service vulnerability in Tibco Rendezvous 7.5.2
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL network
tibco
Summary
rvd in TIBCO Rendezvous (RV) 7.5.2, when -no-lead-wc is omitted, might allow remote attackers to cause a denial of service (network instability) via a subject name with a leading (1) '*' (asterisk) or (2) '>' (greater than) wildcard character.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2007-07/0620.html
- http://osvdb.org/37681
- http://secunia.com/advisories/26337
- http://www.irmplc.com/content/pdfs/Security_Testing_Enterprise_Messaging_Systems.pdf
- http://www.securitytracker.com/id?1018512
- http://www.vupen.com/english/advisories/2007/2814