CVE-2015-2281

Name of the Vulnerable Software and Affected Versions Fortinet Single Sign On (FSSO) versions prior to build 164

Description The issue is related to a stack-based buffer overflow in the collectoragent.exe component. This can be exploited by remote attackers who send a large PROCESS HELLO message to the Message Dispatcher on TCP port 8000, potentially allowing them to execute arbitrary code.

Recommendations For versions prior to build 164, update to build 164 or later to resolve the issue. As a temporary workaround, consider restricting access to the Message Dispatcher on TCP port 8000 to minimize the risk of exploitation.