CVE-2010-3491: Input Validation

First published: Tue Oct 26 2010(Updated: )

The (1) ActiveMatrix Runtime and (2) ActiveMatrix Administrator components in TIBCO ActiveMatrix Service Grid before 2.3.1, ActiveMatrix Service Bus before 2.3.1, ActiveMatrix BusinessWorks Service Engine before 5.8.1, and ActiveMatrix Service Performance Manager before 1.3.2 do not properly handle JMX connections, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service via unspecified vectors.

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/author
• agent/description
• agent/event
• agent/first-publish-date
• agent/last-modified-date
• agent/references
• agent/remedy
• agent/severity
• agent/softwarecombine
• agent/tags
• agent/type
• agent/weakness
• collector/nvd-historical
• collector/nvd-index
• vendor/tibco
• canonical/tibco activematrix service performance manager
• version/tibco activematrix service performance manager/1.3.1
• canonical/tibco activematrix service bus
• version/tibco activematrix service bus/2.3.0
• canonical/tibco activematrix businessworks service engine
• version/tibco activematrix businessworks service engine/5.8.0
• canonical/tibco activematrix service grid
• version/tibco activematrix service grid/2.3.0