CVE-2008-3338

Published: Aug 13, 2008Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Multiple buffer overflows in TIBCO Hawk (1) AMI C library (libtibhawkami) and (2) Hawk HMA (tibhawkhma), as used in TIBCO Hawk before 4.8.1; Runtime Agent (TRA) before 5.6.0; iProcess Engine 10.3.0 through 10.6.2 and 11.0.0; and Mainframe Service Tracker before 1.1.0 might allow remote attackers to execute arbitrary code via a crafted message.

Affected (22)

Products: Tibco: Hawk, Iprocess Engine, Mainframe Service Tracker, Runtime Agent

Tibco

4 products

Hawk

Iprocess Engine

Mainframe Service Tracker

Runtime Agent

Configuration A

22 vulnerable

Vulnerable Software	Affected Versions
Tibco Hawk	Up to 4.8.0
Tibco Hawk	Version 4.6.0
Tibco Hawk	Version 4.6.1
Tibco Hawk	Version 4.7
Tibco Iprocess Engine	Version 10.3.0
Tibco Iprocess Engine	Version 10.3.1
Tibco Iprocess Engine	Version 10.3.2
Tibco Iprocess Engine	Version 10.3.3
Tibco Iprocess Engine	Version 10.3.4
Tibco Iprocess Engine	Version 10.3.5
Tibco Iprocess Engine	Version 10.4.1
Tibco Iprocess Engine	Version 10.4
Tibco Iprocess Engine	Version 10.5
Tibco Iprocess Engine	Version 10.6.0
Tibco Iprocess Engine	Version 10.6.1
Tibco Iprocess Engine	Version 10.6.2
Tibco Iprocess Engine	Version 10.6
Tibco Iprocess Engine	Version 11.0
Tibco Mainframe Service Tracker	Up to 1.0
Tibco Runtime Agent	Up to 5.5.4
Tibco Runtime Agent	Version 5.3
Tibco Runtime Agent	Version 5.4.0