OSVDB ID: 37680

Title: TIBCO Rendezvous (RV) rvd Crafted Packet Remote Memory Consumption DoS

Info

Disclosure

Jul 30, 2007

Discovery

Unknown

Dates

Exploit

Nov 29, 2007

Solution

Unknown

Description

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability

Solution

Upgrade to version 8.0 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): Start rvd with "-no-lead-wc".

Products

Unknown or Incomplete

References

Security Tracker: 1018512
CVE ID: 2007-4158 (see also: NVD)
Bugtraq ID: 25132
Secunia Advisory ID: 26337
Related OSVDB ID: 37681
VUPEN Advisory: ADV-2007-2814
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2007-07/0620.html
http://www.attrition.org/pipermail/vim/2007-December/001855.html
Other Advisory URL: http://www.irmplc.com/content/pdfs/Security_Testing_Enterprise_Messaging_Systems.pdf
http://www.irmplc.com/index.php/111-Vendor-Alerts
http://www.irmplc.com/index.php/160-Advisory-025
http://www.irmplc.com/index.php/160-Advisory-025

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/37680