Security vulnerability advisory for TIBCO Administrator
Article ID: KB0108178
Updated On:
| Products | Versions |
|---|---|
| TIBCO Administrator | - |
| Not Applicable | - |
Description
Description:
TIBCO Administrator vulnerability
Original release date: Feb 23, 2010
Last revised: --
Source: TIBCO Software Inc.
Systems Affected
TIBCO Administrator versions 5.4.0 through 5.6.0
The following components are affected:
* TIBCO Administrator (tibreposerver5.jar)
Description
TIBCO Administrator components listed above will fail to properly enforce
administrator privileges in some circumstance. This may allow unprivileged
users to execute arbitrary commands with administrator privileges.
TIBCO has released an update which addresses this issue. TIBCO strongly
recommends sites running the affected components to install the update
and take corrective action as described below.
Impact
An attacker can execute arbitrary code on any system that is a participant
in a TIBCO domain that utilizes JMS as the communication transport.
Solution
Upgrade TIBCO Administrator to version 5.6.1 or above.
References
http://www.tibco.com/mk/advisory.jsp
CVE: CVE-2010-0683
TIBCO Administrator vulnerability
Original release date: Feb 23, 2010
Last revised: --
Source: TIBCO Software Inc.
Systems Affected
TIBCO Administrator versions 5.4.0 through 5.6.0
The following components are affected:
* TIBCO Administrator (tibreposerver5.jar)
Description
TIBCO Administrator components listed above will fail to properly enforce
administrator privileges in some circumstance. This may allow unprivileged
users to execute arbitrary commands with administrator privileges.
TIBCO has released an update which addresses this issue. TIBCO strongly
recommends sites running the affected components to install the update
and take corrective action as described below.
Impact
An attacker can execute arbitrary code on any system that is a participant
in a TIBCO domain that utilizes JMS as the communication transport.
Solution
Upgrade TIBCO Administrator to version 5.6.1 or above.
References
http://www.tibco.com/mk/advisory.jsp
CVE: CVE-2010-0683
Issue/Introduction
Security vulnerability advisory for TIBCO Administrator
Environment
Product: TIBCO Administrator
Version: 5.6.0
OS:
--------------------
Resolution
TIBCO Administrator vulnerability
Original release date: Feb 23, 2010
Last revised: --
Source: TIBCO Software Inc.
Systems Affected
TIBCO Administrator versions 5.4.0 through 5.6.0
The following components are affected:
* TIBCO Administrator (tibreposerver5.jar)
Description
TIBCO Administrator components listed above will fail to properly enforce
administrator privileges in some circumstance. This may allow unprivileged
users to execute arbitrary commands with administrator privileges.
TIBCO has released an update which addresses this issue. TIBCO strongly
recommends sites running the affected components to install the update
and take corrective action as described below.
Impact
An attacker can execute arbitrary code on any system that is a participant
in a TIBCO domain that utilizes JMS as the communication transport.
Solution
Upgrade TIBCO Administrator to version 5.6.1 or above.
References
http://www.tibco.com/mk/advisory.jsp
CVE: CVE-2010-0683
Original release date: Feb 23, 2010
Last revised: --
Source: TIBCO Software Inc.
Systems Affected
TIBCO Administrator versions 5.4.0 through 5.6.0
The following components are affected:
* TIBCO Administrator (tibreposerver5.jar)
Description
TIBCO Administrator components listed above will fail to properly enforce
administrator privileges in some circumstance. This may allow unprivileged
users to execute arbitrary commands with administrator privileges.
TIBCO has released an update which addresses this issue. TIBCO strongly
recommends sites running the affected components to install the update
and take corrective action as described below.
Impact
An attacker can execute arbitrary code on any system that is a participant
in a TIBCO domain that utilizes JMS as the communication transport.
Solution
Upgrade TIBCO Administrator to version 5.6.1 or above.
References
http://www.tibco.com/mk/advisory.jsp
CVE: CVE-2010-0683
Feedback
Yes
No
Powered by
