Multiple Hospira Products CVE-2015-3955 Stack Buffer Overflow Vulnerability
Multiple Hospira products are prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.
A remote attacker may exploit this issue to execute arbitrary code in the context of the affected application. Failed attempts will likely cause a denial-of-service condition.
The following products are available:
Plum A+ Infusion System 13.4 and prior
Plum A+3 Infusion System 13.6 and prior
Symbiq Infusion System 3.13 and prior