CVE-2011-0649 : Multiple unspecified vulnerabilities in TIBCO Rendezvous 8.2.1 through 8.3.0, En

Multiple unspecified vulnerabilities in TIBCO Rendezvous 8.2.1 through 8.3.0, Enterprise Message Service (EMS) 5.1.0 through 6.0.0, Runtime Agent (TRA) 5.6.2 through 5.7.0, Silver BPM Service before 1.0.4, Silver CAP Service vebefore 1.0.2, and Silver BusinessWorks Service 1.0.0, when running on Unix systems, allow local users to gain root privileges via unknown vectors related to SUID and (1) Rendezvous Routing Daemon (rvrd), (2) Rendezvous Secure Daemon (rvsd), (3) Rendezvous Secure Routing Daemon (rvsrd), and (4) EMS Server (tibemsd).

Published 2011-02-04 01:00:08

Updated 2025-04-11 00:51:22

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2011-0649

Tibco » Runtime Agent » Version: 5.6.2
cpe:2.3:a:tibco:runtime_agent:5.6.2:*:*:*:*:*:*:*
Matching versions
Tibco » Runtime Agent » Version: 5.7.0
cpe:2.3:a:tibco:runtime_agent:5.7.0:*:*:*:*:*:*:*
Matching versions
Tibco » Rendezvous » Version: 8.3.0
cpe:2.3:a:tibco:rendezvous:8.3.0:*:*:*:*:*:*:*
Matching versions
Tibco » Rendezvous » Version: 8.2.1
cpe:2.3:a:tibco:rendezvous:8.2.1:*:*:*:*:*:*:*
Matching versions
Tibco » Enterprise Message Service » Version: 5.1.0
cpe:2.3:a:tibco:enterprise_message_service:5.1.0:*:*:*:*:*:*:*
Matching versions
Tibco » Enterprise Message Service » Version: 5.1.1
cpe:2.3:a:tibco:enterprise_message_service:5.1.1:*:*:*:*:*:*:*
Matching versions
Tibco » Enterprise Message Service » Version: 6.0.0
cpe:2.3:a:tibco:enterprise_message_service:6.0.0:*:*:*:*:*:*:*
Matching versions
Tibco » Silver Bpm Service
Versions up to, including, (<=) 1.0.3
cpe:2.3:a:tibco:silver_bpm_service:*:*:*:*:*:*:*:*
Matching versions
Tibco » Silver Bpm Service » Version: 1.0.1
cpe:2.3:a:tibco:silver_bpm_service:1.0.1:*:*:*:*:*:*:*
Matching versions
Tibco » Silver Cap Service
Versions up to, including, (<=) 1.0.1
cpe:2.3:a:tibco:silver_cap_service:*:*:*:*:*:*:*:*
Matching versions
Tibco » Silver Cap Service » Version: 1.0.0
cpe:2.3:a:tibco:silver_cap_service:1.0.0:*:*:*:*:*:*:*
Matching versions
Tibco » Silver Businessworks Service » Version: 1.0.0
cpe:2.3:a:tibco:silver_businessworks_service:1.0.0:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2011-0649

EPSS FAQ

0.11%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 26 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2011-0649

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2011-0649

http://secunia.com/advisories/43160

Sign in
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/65105

Multiple TIBCO products SUID privilege escalation CVE-2011-0649 Vulnerability Report
http://www.tibco.com/multimedia/rv_ems_security_advisory_20110201_tcm8-13185.txt

404 Not Found
Vendor Advisory
http://www.vupen.com/english/advisories/2011/0269

Webmail | OVH- OVH
Vendor Advisory
http://secunia.com/advisories/43174

Sign in
Vendor Advisory
http://www.securityfocus.com/bid/46104

Multiple TIBCO Products Unspecified Local Privilege Escalation Vulnerability

Jump to

Vulnerability Details : CVE-2011-0649

Products affected by CVE-2011-0649

Exploit prediction scoring system (EPSS) score for CVE-2011-0649

CVSS scores for CVE-2011-0649

References for CVE-2011-0649