PT-2015-5961 · Medicomp · Medcin Engine
Ryan Wincey
·
Published
2015-10-29
·
Updated
2015-10-29
·
CVE-2015-2900
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Medicomp MEDCIN Engine versions prior to 2.22.20153.226
Description
The issue allows remote attackers to cause a denial of service or possibly have other impact via a crafted packet on port 8190, specifically targeting the AddUserFinding add userfinding2 function.
Recommendations
For versions prior to 2.22.20153.226, update to version 2.22.20153.226 or later to resolve the issue. As a temporary workaround, consider restricting access to port 8190 to minimize the risk of exploitation.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Medcin Engine