WellinTech KingSCADA before 3.7.0.0.1 contains a stack-based buffer overflow. The vulnerability is triggered when sending a specially crafted packet to the AlarmServer (AEserver.exe) service listening on TCP port 12401.
https://github.com/flypuma/vul/blob/master/kingview/copy_argumengt_overflow/poc.py
https://github.com/flypuma/vul/blob/master/kingview/copy_argumengt_overflow/Debugging.md