CVE-2014-2544 Information
Description
Unspecified vulnerability in Spotfire Web Player Engine Spotfire Desktop and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4 4.5.x before 4.5.1 5.0.x before 5.0.2 5.5.x before 5.5.1 and 6.x before 6.0.2; Spotfire Professional 4.0.x before 4.0.4 4.5.x before 4.5.2 5.0.x before 5.0.2 5.5.x before 5.5.1 and 6.x before 6.0.1; Spotfire Web Player 4.0.x before 4.0.4 4.5.x before 4.5.2 5.0.x before 5.0.2 5.5.x before 5.5.1 and 6.x before 6.0.1; Spotfire Automation Services 4.0.x before 4.0.4 4.5.x before 4.5.2 5.0.x before 5.0.2 5.5.x before 5.5.1 and 6.x before 6.0.1; Spotfire Deployment Kit 4.0.x before 4.0.4 4.5.x before 4.5.2 5.0.x before 5.0.2 5.5.x before 5.5.1 and 6.x before 6.0.1; Spotfire Desktop 6.x before 6.0.1; and Spotfire Analyst 6.x before 6.0.1 allows remote attackers to execute arbitrary code via unknown vectors.
Reference
http://www.tibco.com/mk/advisory.jsp http://www.tibco.com/multimedia/spotfire_advisory_20140409_tcm8-20764.txt
Share on: