CVE

Id
46075  
CVE No.
CVE-2010-3491  
Status
Candidate  
Description
The (1) ActiveMatrix Runtime and (2) ActiveMatrix Administrator components in TIBCO ActiveMatrix Service Grid before 2.3.1, ActiveMatrix Service Bus before 2.3.1, ActiveMatrix BusinessWorks Service Engine before 5.8.1, and ActiveMatrix Service Performance Manager before 1.3.2 do not properly handle JMX connections, which allows remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service via unspecified vectors.  
Phase
Assigned (20100924)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
501113 46075 CVE-2010-3491 CONFIRM:http://www.tibco.com/multimedia/activematrix_advisory_tcm8-12488.txt  View
501114 46075 CVE-2010-3491 CONFIRM:http://www.tibco.com/services/support/advisories/activematrix-advisory_20101019.jsp  View
501115 46075 CVE-2010-3491 BID:44254  View
501116 46075 CVE-2010-3491 URL:http://www.securityfocus.com/bid/44254  View
501117 46075 CVE-2010-3491 SECUNIA:41891  View
501118 46075 CVE-2010-3491 URL:http://secunia.com/advisories/41891  View
501119 46075 CVE-2010-3491 VUPEN:ADV-2010-2747  View
501120 46075 CVE-2010-3491 URL:http://www.vupen.com/english/advisories/2010/2747  View
501121 46075 CVE-2010-3491 XF:tibco-jmx-code-execution(62674)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
36663 JVNDB-2010-002443 Zope Object Database の ZEO/StorageServer.py におけるサービス運用妨害 (DoS) の脆弱性 Zope Object Database の ZEO/StorageServer.py には、競合状態が発生するため、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2010-3495 46075 4.3 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002443.html  View