Multiple Hospira Products CVE-2015-3955 Stack Buffer Overflow Vulnerability

Multiple Hospira products are prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.

A remote attacker may exploit this issue to execute arbitrary code in the context of the affected application. Failed attempts will likely cause a denial-of-service condition.

The following products are available:

Plum A+ Infusion System 13.4 and prior
Plum A+3 Infusion System 13.6 and prior
Symbiq Infusion System 3.13 and prior


Privacy Statement
Copyright 2010, SecurityFocus