CVE-2015-2898

Medicomp MEDCIN Engine <2.22.20153.226 - RCE

Title source: llm
STIX 2.1

Description

Multiple stack-based buffer overflows in Medicomp MEDCIN Engine before 2.22.20153.226 might allow remote attackers to execute arbitrary code via a crafted packet on port 8190, related to (1) the SetGroupSequenceEx na_setgroupsequenceex function, (2) the FormatDate julptostr function, and (3) the UserFindingCodes addtocl function.

References (2)

Core 2
Core References
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/675052

Scores

EPSS 0.0317
EPSS Percentile 86.5%

Details

CWE
CWE-119
Status published
Products (1)
medicomp/medcin_engine < 2.22.20142.166
Published Oct 29, 2015
Tracked Since Feb 18, 2026