Vulnerabilities > Wellintech

DATE CVE VULNERABILITY TITLE RISK
2012-07-05 CVE-2012-1832 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Wellintech Kingview
WellinTech KingView 6.53 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a crafted packet to (1) TCP or (2) UDP port 2001.
network
low complexity
wellintech CWE-119
critical
10.0
2012-07-05 CVE-2012-1831 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Wellintech Kingview
Heap-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555.
network
low complexity
wellintech CWE-119
critical
10.0
2012-07-05 CVE-2012-1830 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Wellintech Kingview
Stack-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555.
network
low complexity
wellintech CWE-119
critical
10.0
2012-05-09 CVE-2012-1977 Credentials Management vulnerability in Wellintech Kingview 3.0
WellinTech KingSCADA 3.0 uses a cleartext base64 format for storage of passwords in user.db, which allows context-dependent attackers to obtain sensitive information by reading this file.
7.1
2012-05-02 CVE-2012-1819 DLL Loading Arbitrary Code Execution vulnerability in Wellintech Kingview 6.53
Untrusted search path vulnerability in WellinTech KingView 6.53 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
network
wellintech
critical
9.3
2011-12-27 CVE-2011-4536 Buffer Errors vulnerability in Wellintech Kingview 6.53/65.30.2010.18018
Heap-based buffer overflow in nettransdll.dll in HistorySvr.exe (aka HistoryServer.exe) in WellinTech KingView 6.53 and 65.30.2010.18018 allows remote attackers to execute arbitrary code via a crafted op-code 3 packet.
network
low complexity
wellintech CWE-119
critical
10.0
2011-08-16 CVE-2011-3142 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Wellintech Kingview 6.52/6.53
Stack-based buffer overflow in an ActiveX control in KVWebSvr.dll in WellinTech KingView 6.52 and 6.53 allows remote attackers to execute arbitrary code via a long second argument to the ValidateUser method.
network
low complexity
wellintech CWE-119
critical
10.0
2011-01-11 CVE-2011-0406 Buffer Errors vulnerability in Wellintech Kingview 6.53
Heap-based buffer overflow in HistorySvr.exe in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a long request to TCP port 777.
network
low complexity
wellintech CWE-119
critical
10.0