Rendezvous < 8.0.0 Crafted Packet Remote DoS

This script is Copyright (C) 2007-2013 Tenable Network Security, Inc.


Synopsis :

The remote host contains an application that is prone to a denial of
service attack.

Description :

The remote host appears to be running Rendezvous, a commercial
messaging software product used for building distributed applications

According to its banner, Rendezvous' rvd daemon fails to properly
validate input in incoming packets before using it to allocate memory.
By sending a specially crafted packet with a length field of 0, an
unauthenticated, remote attacker may be able to leak memory and
eventually exhaust memory on the affected system.

See also :

http://www.nessus.org/u?ab43b01a

Solution :

Upgrade to TIBCO Rendezvous version 8.0 or later as that reportedly
addresses the issue.

Risk factor :

High / CVSS Base Score : 7.8
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C)
CVSS Temporal Score : 5.8
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Denial of Service

Nessus Plugin ID: 28376 ()

Bugtraq ID: 25132

CVE ID: CVE-2007-4158