Vulnerability   
Search   
    Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.802550
Category:Buffer overflow
Title:WellinTech KingView 'HistoryServer.exe' Heap Based Buffer Overflow Vulnerability
Summary:KingView is prone to heap based buffer overflow vulnerability.
Description:Summary:
KingView is prone to heap based buffer overflow vulnerability.

Vulnerability Insight:
The flaw is due to an error in the 'nettransdll.dll' module of the
'HistorySvr' component when processing a packet containing opcode 3. This can
be exploited to cause a heap-based buffer overflow via a specially crafted packet sent to TCP port 777.

Vulnerability Impact:
Successful exploitation will allow remote attackers to execute arbitrary
code in the context of the application. Failed attacks will cause denial-of-service conditions.

Affected Software/OS:
KingView version 6.53 and 65.30.2010.18018

Solution:
Apply the patch.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2011-4536
http://www.us-cert.gov/control_systems/pdf/ICSA-11-355-02.pdf
http://www.zerodayinitiative.com/advisories/ZDI-11-351/
http://www.osvdb.org/77992
http://secunia.com/advisories/47339
CopyrightCopyright (C) 2012 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2025 E-Soft Inc. All rights reserved.