CVE-2015-2898

Name of the Vulnerable Software and Affected Versions Medicomp MEDCIN Engine versions prior to 2.22.20153.226

Description The issue is related to multiple stack-based buffer overflows that could allow remote attackers to execute arbitrary code via a crafted packet on port 8190. This is related to the SetGroupSequenceEx na setgroupsequenceex function, the FormatDate julptostr function, and the UserFindingCodes addtocl function.

Recommendations For versions prior to 2.22.20153.226, update to version 2.22.20153.226 or later to resolve the issue. As a temporary workaround, consider restricting access to port 8190 to minimize the risk of exploitation.