This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.
The WellinTech KingSCADA server installed on the remote host is
affected by a remote code execution vulnerability.
The WellinTech KingSCADA server installed on the remote host is a
version prior to 126.96.36.199-EN. It is, therefore, affected by a
stack-based buffer overflow flaw in 'kxNetDispose.dll' due to improper
validation of user-supplied input. A remote, unauthenticated attacker,
by sending a specially crafted packet used for the calculation of copy
operation sizes, can exploit this to cause the structured exception
handler (SEH) to be overwritten, resulting in the execution of
arbitrary code or a denial of service.
See also :
Upgrade KingSCADA to version 188.8.131.52-EN.
Risk factor :
Critical / CVSS Base Score : 10.0