CVE-2011-0649
First published: Fri Feb 04 2011(Updated: )
Multiple unspecified vulnerabilities in TIBCO Rendezvous 8.2.1 through 8.3.0, Enterprise Message Service (EMS) 5.1.0 through 6.0.0, Runtime Agent (TRA) 5.6.2 through 5.7.0, Silver BPM Service before 1.0.4, Silver CAP Service vebefore 1.0.2, and Silver BusinessWorks Service 1.0.0, when running on Unix systems, allow local users to gain root privileges via unknown vectors related to SUID and (1) Rendezvous Routing Daemon (rvrd), (2) Rendezvous Secure Daemon (rvsd), (3) Rendezvous Secure Routing Daemon (rvsrd), and (4) EMS Server (tibemsd).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| TIBCO Rendezvous | =8.2.1 | |
| TIBCO Rendezvous | =8.3.0 | |
| TIBCO Enterprise Message Service | =5.1.0 | |
| TIBCO Enterprise Message Service | =5.1.1 | |
| TIBCO Enterprise Message Service | =6.0.0 | |
| Tibco Runtime Agent | =5.6.2 | |
| Tibco Runtime Agent | =5.7.0 | |
| Tibco Silver Bpm Service | <=1.0.3 | |
| Tibco Silver Bpm Service | =1.0.1 | |
| Tibco Silver Cap Service | <=1.0.1 | |
| Tibco Silver Cap Service | =1.0.0 | |
| Tibco Silver Businessworks Service | =1.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2011-0649?
The severity of CVE-2011-0649 is not explicitly assigned, but it is advisable to treat it with high priority due to the multiple unspecified vulnerabilities.
How do I fix CVE-2011-0649?
To fix CVE-2011-0649, upgrade TIBCO Rendezvous, Enterprise Message Service, Runtime Agent, and any affected Silver services to the latest versions.
Which TIBCO products are affected by CVE-2011-0649?
CVE-2011-0649 affects TIBCO Rendezvous versions 8.2.1 to 8.3.0, Enterprise Message Service versions 5.1.0 to 6.0.0, and several versions of Runtime Agent and Silver services.
What risks are associated with CVE-2011-0649?
Risks associated with CVE-2011-0649 include potential unauthorized access and data leakage due to the unspecified vulnerabilities in the affected software.
Is there a workaround for CVE-2011-0649?
Currently, a specific workaround for CVE-2011-0649 is not provided, and the recommended action is to upgrade to a patched version.
- collector/nvd-index
- collector/nvd-historical
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- agent/source
- vendor/tibco
- canonical/tibco rendezvous
- version/tibco rendezvous/8.2.1
- version/tibco rendezvous/8.3.0
- canonical/tibco enterprise message service
- version/tibco enterprise message service/5.1.0
- version/tibco enterprise message service/5.1.1
- version/tibco enterprise message service/6.0.0
- canonical/tibco runtime agent
- version/tibco runtime agent/5.6.2
- version/tibco runtime agent/5.7.0
- canonical/tibco silver bpm service
- version/tibco silver bpm service/1.0.3
- version/tibco silver bpm service/1.0.1
- canonical/tibco silver cap service
- version/tibco silver cap service/1.0.1
- version/tibco silver cap service/1.0.0
- canonical/tibco silver businessworks service
- version/tibco silver businessworks service/1.0.0