TIBCO Formvine Multiple Unspecified Vulnerabilities

by Carol~ Moderator - 10/24/12 9:32 AM

In Reply to: VULNERABILITIES / FIXES - October 24, 2012 by Carol~ Moderator

Release Date : 2012-10-24

Criticality level : Less critical
Impact : Exposure of system information
Manipulation of data
DoS
Where : From local network
Solution Status : Vendor Patch

Software: TIBCO Formvine 3.x

Description:
Some vulnerabilities have been reported in TIBCO Formvine, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, and cause a DoS (Denial of Service).

The vulnerabilities are caused due to unspecified errors within the TIBCO Formvine Server. No further information is currently available.

The vulnerabilities are reported in versions 3.1.0 through 3.2.0.

Solution:
Update to version 3.2.1.

Provided and/or discovered by:
Reported by the vendor.

Original Advisory:
http://www.tibco.com/multimedia/formvine-advisory-2012-10-23_tcm8-17451.txt
http://www.tibco.com/services/support/advisories/formvine-advisory_20121023.jsp

http://secunia.com/advisories/51092/