KingView 6.53 - Insecure ActiveX Control (SuperGrid)

No description provided by source. html object classid='clsid:F494550F-A028-4817-A7B5-E5F2DCB4A47E' id='target'/object !-- KingView Insecure ActiveX Control - SuperGrid Vendor: http://www.wellintech.com Version: KingView 6.53 Tested on: Windows XP SP3 / IE Download:...

KingView 6.53 - Insecure ActiveX Control (SuperGrid)

Exploit for windows platform in category local exploits KingView Insecure ActiveX Control Proof of Concept - SuperGrid.ocx This proof of concept will copy any arbritrary file from one location to a second location. A malicious user may be able to use this to copy a file from an attacker controlle...

KingView 6.53 Active-X File Overwrite / Creation

arg1="..................................\WINDOWS\win.ini" target.SaveToFile arg1...

KingView 6.53 - KChartXY ActiveX File Creation Overwrite

KingView 6.53 - KChartXY ActiveX File Creation Overwrite arg1="..................................\WINDOWS\win.ini" target.SaveToFile arg1...

KingView 6.53 - SuperGrid Insecure ActiveX Control

KingView 6.53 - SuperGrid Insecure ActiveX Control KingView Insecure ActiveX Control Proof of Concept - SuperGrid.ocx This proof of concept will copy any arbritrary file from one location to a second location. A malicious user may be able to use this to copy a file from an attacker controlled sha...

KingView Log File Parsing Buffer Overflow

This module exploits a vulnerability found in KingView "KingView Log File Parsing Buffer Overflow", 'Description' = %q This module exploits a vulnerability found in KingView MSFLICENSE, 'Author' = 'Lucas Apa', Vulnerability discovery 'Carlos Mario Penagos Hollman', Vulnerability discovery...

CVE-2012-4711

Buffer overflow in kingMess.exe 65.20.2003.10300 in WellinTech KingView 6.52, kingMess.exe 65.20.2003.10400 in KingView 6.53, and kingMess.exe 65.50.2011.18049 in KingView 6.55 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted packet...

CVE-2012-1831

Heap-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555...

CVE-2012-1832

WellinTech KingView 6.53 is affected by CVE-2012-1832: an out-of-bounds read vulnerability exploitable by a crafted packet to port 2001 (TCP/UDP). The issue may enable arbitrary code execution or DoS in the KingView application. Multiple connected sources corroborate the vulnerability details, in...

CVE-2012-2560

Directory traversal vulnerability in WellinTech KingView 6.53 allows remote attackers to read arbitrary files via a crafted HTTP request to port 8001...

CVE-2012-1830

Stack-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555...

Kingview Touchview 6.53 - Multiple Heap Overflow Vulnerabilities

Exploit Title: Kingview 6.53 touchview.exe heap overflow 2 Date: June 24 2012 Exploit Author: Carlos Mario Penagos Hollmann Vendor Homepage: www.kingview.com Version: 6.53 Tested on: Windows SP 1 CVE : Open kingivew click on Make choose network configuration---network parameter , then go to the...

Kingview Touchview 6.53 Heap Overflows

Exploit Title: Kingview 6.53 touchview.exe heap overflow 2 Date: June 24 2012 Exploit Author: Carlos Mario Penagos Hollmann Vendor Homepage: www.kingview.com Version: 6.53 Tested on: Windows SP 1 CVE : Open kingivew click on Make choose network configuration---network parameter , then go to the...

Design/Logic Flaw

Untrusted search path vulnerability in WellinTech KingView 6.53 allows local users to gain privileges via a Trojan horse DLL in the current working directory...

CVE-2012-1819

CVE-2012-1819 describes an Untrusted Search Path (DLL hijack) vulnerability in WellinTech KingView 6.53. An attacker with file-system access could place a malicious DLL in the application's working directory to achieve arbitrary code execution. ICS-CERT notes the vulnerability is remotely exploit...

Heap overflow

Heap-based buffer overflow in nettransdll.dll in HistorySvr.exe aka HistoryServer.exe in WellinTech KingView 6.53 and 65.30.2010.18018 allows remote attackers to execute arbitrary code via a crafted op-code 3 packet...

Heap overflow

Heap-based buffer overflow in HistorySvr.exe in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a long request to TCP port 777...