SCADA: Kingview SCADA HMI HistorySvr Heap Overflow

This signature detects attempts to exploit a known flaw in KingView SCADA HMI HistorySrv. Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the user running the application. Failed exploit attempts will likely result in denial-of-service conditions. KingView 6.53 is vulnerable; other versions might also be affected.

Extended Description

KingView is prone to a heap-based buffer-overflow vulnerability because it fails to properly validate user-supplied input. Successfully exploiting this issue may allow remote attackers to execute arbitrary code in the context of the user running the application. Failed exploit attempts will likely result in denial-of-service conditions. KingView 6.53 is vulnerable; other versions may also be affected.

Short Name
SCADA:KINGVIEW-HISTORYSVR-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
SCADA
Keywords
CVE-2011-0406 HMI Heap HistorySvr Kingview Overflow SCADA bid:45727
Release Date
11/14/2012
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3339
Port
TCP/777
False Positive
Unknown
CVSS Score

10.0

Found a potential security threat?