critical
10
CWE
119
Advisory Published
Updated

CVE-2009-1291: Buffer Overflow

First published: Thu Apr 30 2009(Updated: )

Stack-based buffer overflow in TIBCO SmartSockets before 6.8.2, SmartSockets Product Family (aka RTworks) before 4.0.5, and Enterprise Message Service (EMS) 4.0.0 through 5.1.1, as used in SmartSockets Server and RTworks Server (aka RTserver), SmartSockets client libraries and add-on products, RTworks libraries and components, EMS Server (aka tibemsd), SmartMQ, iProcess Engine, ActiveMatrix products, and CA Enterprise Communicator, allows remote attackers to execute arbitrary code via "inbound data," as demonstrated by requests to the UDP interface of the RTserver component, and data injection into the TCP stream to tibemsd.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
TIBCO Enterprise Message Service<=5.1.1
TIBCO Enterprise Message Service=4.0.0
TIBCO Enterprise Message Service=4.1.0
TIBCO Enterprise Message Service=4.2.0
TIBCO Enterprise Message Service=4.3.0
TIBCO Enterprise Message Service=4.4.1
TIBCO Enterprise Message Service=4.4.2
TIBCO RTWorks=4.0.3
TIBCO RTWorks=4.0.4
TIBCO SmartSockets RTserver=6.8.0
TIBCO SmartSockets RTserver=6.8.1
TIBCO SmartSockets RTserver<=6.8.1
TIBCO SmartSockets RTserver=6.8.0

Remedy

http://www.tibco.com/services/support/advisories/default.jsp

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2009-1291?

    CVE-2009-1291 is classified as a high severity vulnerability due to the potential for a stack-based buffer overflow that can lead to arbitrary code execution.

  • How do I fix CVE-2009-1291?

    To fix CVE-2009-1291, upgrade TIBCO SmartSockets to version 6.8.2 or later, TIBCO Enterprise Message Service to version 5.1.2 or later, and TIBCO RTworks to version 4.0.5 or later.

  • What products are affected by CVE-2009-1291?

    CVE-2009-1291 affects TIBCO SmartSockets prior to 6.8.2, TIBCO Enterprise Message Service versions 4.0.0 through 5.1.1, and TIBCO RTworks prior to 4.0.5.

  • Is CVE-2009-1291 exploits being actively used?

    Yes, there have been reports indicating that exploits for CVE-2009-1291 are actively being utilized in the wild.

  • What are the risks of not addressing CVE-2009-1291?

    Failure to address CVE-2009-1291 can lead to unauthorized code execution, data breaches, and potential system compromise.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203