1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: KingView CVE-2012-4711

Attack: KingView CVE-2012-4711

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a buffer overflow vulnerability in WellinTech KingView which may lead to remote code execution.

Additional Information

KingView is software for monitoring and controlling SCADA automation equipment and process products.

The application is prone to a memory-corruption vulnerability due to a buffer-overflow condition. Specifically, this issue is triggered when handling specially crafted packets.

An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.

Affected

  • KingView 6.52, 6.53 and 6.55 are vulnerable.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube