Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4536

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2011-4536
Last Modified 27 Dec 2011 10:40:25
Published 26 Dec 2011 11:01:39
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4536

Summary

Heap-based buffer overflow in nettransdll.dll in HistorySvr.exe (aka HistoryServer.exe) in WellinTech KingView 6.53 and 65.30.2010.18018 allows remote attackers to execute arbitrary code via a crafted op-code 3 packet.

Vulnerable Systems

Application

  • Wellintech Kingview 6.53

  • Wellintech Kingview 65.30.2010.18018


References

MISC - http://www.zerodayinitiative.com/advisories/ZDI-11-351/

MISC - http://www.us-cert.gov/control_systems/pdf/ICSA-11-355-02.pdf

OSVDB - 77992

CONFIRM - http://www.kingview.com/news/detail.aspx?contentid=587

SECUNIA - 47339

CONFIRM - http://en.wellintech.com/news/detail.aspx?contentid=166


Last Updated: 27 May 2016 10:57:58