Tibbo: Security Vulnerabilities
ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows local users to execute arbitrary Java code with SYSTEM privileges by using the Apache Axis AdminService deployment method to publish a class.
CVSS Score
7.2
EPSS Score
0.0
Published
2015-11-21
The Ice Faces servlet in ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML document.
CVSS Score
10.0
EPSS Score
0.005
Published
2015-11-21