CVE-2015-2901

Medicomp MEDCIN Engine <2.22.20142.166 - RCE

Title source: llm
STIX 2.1

Description

Multiple stack-based buffer overflows in Medicomp MEDCIN Engine 2.22.20142.166 might allow remote attackers to execute arbitrary code via a crafted packet on port 8190, related to (1) the GetProperty info_getproperty function and (2) the GetProperty UdfCodeList function.

References (2)

Core 2
Core References
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/675052

Scores

EPSS 0.0319
EPSS Percentile 86.6%

Details

CWE
CWE-119
Status published
Products (1)
medicomp/medcin_engine 2.22.20142.166
Published Oct 29, 2015
Tracked Since Feb 18, 2026