This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.
The WellinTech KingSCADA server installed on the remote host is
affected by a remote code execution vulnerability.
The WellinTech KingSCADA server installed on the remote host is a
version prior to 184.108.40.206-EN. It is, therefore, affected by a
vulnerability in the 'kxClientDownload.ocx' ActiveX control. A remote
attacker, by setting the ProjectURL property, can exploit this to
download an arbitrary DLL file from a remote location, thus allowing
the injection of executable code.
See also :
Upgrade KingSCADA to version 220.127.116.11-EN.
Risk factor :
High / CVSS Base Score : 7.5