Heap-based Buffer Overflow in Philips Xper Information Management Physiomonitoring 5 Components, Xper Information Management Vascular Monitoring 5 Components, and Xper Information Management Servers and Workstations for Flex Cardio Products

Heap-based Buffer Overflow in Philips Xper Information Management Physiomonitoring 5 Components, Xper Information Management Vascular Monitoring 5 Components, and Xper Information Management Servers and Workstations for Flex Cardio Products

CVE-2013-2808 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Heap-based buffer overflow in Xper in Philips Xper Information Management Physiomonitoring 5 components, Xper Information Management Vascular Monitoring 5 components, and Xper Information Management servers and workstations for Flex Cardio products before XperConnect 1.5.4.053 SP2 allows remote attackers to execute arbitrary code via a crafted HTTP request to the Connect broker on TCP port 6000.

Learn more about our Cis Benchmark Audit For Server Software.