Lucene search
HistoryOct 29, 2015 - 10:59 a.m.
CVE-2015-2899
cve-2015-2899
information security
buffer overflow
remote code execution
qualifierlist
medicomp medcin engine
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.3 High
AI Score
Confidence
Low
0.037 Low
EPSS
Percentile
91.9%
Heap-based buffer overflow in the QualifierList retrieve_qualifier_list function in Medicomp MEDCIN Engine before 2.22.20153.226 might allow remote attackers to execute arbitrary code via a long list name in a packet on port 8190.
Affected configurations
Node
medicompmedcin_engineRange≤2.22.20142.166
| CPE | Name | Operator | Version |
|---|---|---|---|
| medicomp:medcin_engine | medicomp medcin engine | le | 2.22.20142.166 |
Related
prion
prion
Heap overflow
2015-10-29 10:59:00
nvd
nvd
CVE-2015-2899
2015-10-29 10:59:17
cvelist
cvelist
CVE-2015-2899
2015-10-29 10:00:00
cert
cert
Medicomp MEDCIN Engine contains multiple vulnerabilities
2015-10-20 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.3 High
AI Score
Confidence
Low
0.037 Low
EPSS
Percentile
91.9%
Related for CVE-2015-2899