CVE-2022-2329

Name of the Vulnerable Software and Affected Versions IGSS Data Server - IGSSdataServer.exe versions prior to V15.0.0.22073

Description A CWE-190: Integer Overflow or Wraparound issue exists, potentially causing a heap-based buffer overflow. This could lead to denial of service and possibly remote code execution if an attacker sends multiple specially crafted messages. The vulnerability can be exploited by a remote attacker by sending a specially crafted message, allowing them to execute arbitrary code.

Recommendations For versions prior to V15.0.0.22073, update to version V15.0.0.22073 or later to resolve the issue. As a temporary workaround, consider restricting access to the IGSSdataServer.exe module to minimize the risk of exploitation. Avoid using the affected module until the issue is resolved.