Vulnerability Description
Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service (EMS) before 8.3.0 and EMS Appliance before 2.4.0 allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via crafted inbound data.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tibco | Enterprise Message Service Appliance | - |
| Tibco | Enterprise Message Service Appliance Firmware | <= 2.3.1 |
| Tibco | Enterprise Message Service | <= 8.2.2 |
Related Weaknesses (CWE)
References
- http://www.tibco.com/assets/blt8a2d9978616c21fe/2016-001-advisory.txtVendor Advisory
- http://www.tibco.com/mk/advisory.jspVendor Advisory
- http://www.tibco.com/assets/blt8a2d9978616c21fe/2016-001-advisory.txtVendor Advisory
- http://www.tibco.com/mk/advisory.jspVendor Advisory
FAQ
What is CVE-2016-3628?
CVE-2016-3628 is a vulnerability with a CVSS score of 8.8 (HIGH). Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service (EMS) before 8.3.0 and EMS Appliance before 2.4.0 allows remote authenticated users to cause a denial of service or possibl...
How severe is CVE-2016-3628?
CVE-2016-3628 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-3628?
Check the references section above for vendor advisories and patch information. Affected products include: Tibco Enterprise Message Service Appliance, Tibco Enterprise Message Service Appliance Firmware, Tibco Enterprise Message Service.