PT-2015-5960 · Medicomp · Medcin Engine
Published
2015-10-29
·
Updated
2015-10-29
·
CVE-2015-2899
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Medicomp MEDCIN Engine versions prior to 2.22.20153.226
Description
A heap-based buffer overflow issue exists in the QualifierList retrieve qualifier list function. This could potentially allow remote attackers to execute arbitrary code via a long list name in a packet on port 8190.
Recommendations
For versions prior to 2.22.20153.226, update to version 2.22.20153.226 or later to resolve the issue. As a temporary workaround, consider restricting access to port 8190 to minimize the risk of exploitation.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Medcin Engine