CVE-2012-1831

2012-07-0503:23:18

CWE-119

certcc

web.nvd.nist.gov

cve-2012-1831

wellintech

kingview

buffer overflow

remote code execution

tcp port 555

security vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.2

Confidence

Low

EPSS

0.11

Percentile

95.2%

JSON

Heap-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555.

Affected configurations

Nvd

Node

wellintechkingviewRange≤6.53

wellintechkingviewMatch3.0

wellintechkingviewMatch6.5.30.2010.18018

wellintechkingviewMatch6.52

wellintechkingviewMatch65.30.2010.18018

wellintechkingviewMatch65.30.17249

VendorProductVersionCPE
wellintechkingview*cpe:2.3:a:wellintech:kingview:*:*:*:*:*:*:*:*
wellintechkingview3.0cpe:2.3:a:wellintech:kingview:3.0:*:*:*:*:*:*:*
wellintechkingview6.5.30.2010.18018cpe:2.3:a:wellintech:kingview:6.5.30.2010.18018:*:*:*:*:*:*:*
wellintechkingview6.52cpe:2.3:a:wellintech:kingview:6.52:*:*:*:*:*:*:*
wellintechkingview65.30.2010.18018cpe:2.3:a:wellintech:kingview:65.30.2010.18018:*:*:*:*:*:*:*
wellintechkingview65.30.17249cpe:2.3:a:wellintech:kingview:65.30.17249:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
wellintech	kingview	*	cpe:2.3:a:wellintech:kingview::::::::
wellintech	kingview	3.0	cpe:2.3:a:wellintech:kingview:3.0:::::::*
wellintech	kingview	6.5.30.2010.18018	cpe:2.3:a:wellintech:kingview:6.5.30.2010.18018:::::::*
wellintech	kingview	6.52	cpe:2.3:a:wellintech:kingview:6.52:::::::*
wellintech	kingview	65.30.2010.18018	cpe:2.3:a:wellintech:kingview:65.30.2010.18018:::::::*
wellintech	kingview	65.30.17249	cpe:2.3:a:wellintech:kingview:65.30.17249:::::::*