Remote Code Execution and Denial of Service Vulnerability in Medicomp MEDCIN Engine 2.22.20153.x

Remote Code Execution and Denial of Service Vulnerability in Medicomp MEDCIN Engine 2.22.20153.x

CVE-2015-6006 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The AddUserFinding implementation in Medicomp MEDCIN Engine 2.22.20153.x before 2.22.20153.226 might allow remote attackers to execute arbitrary code or cause a denial of service (integer truncation and heap-based buffer overflow) via a crafted packet on port 8190.

Learn more about our User Device Pen Test.