WellinTech KingView 6.53 < 2010-12-15 HistorySvr.exe TCP Request Remote Overflow
Critical Nessus Plugin ID 59375
SynopsisThe remote Windows host contains an application that is affected by a remote buffer overflow vulnerability.
DescriptionAccording to its version, the instance of WellinTech KingView installed on the remote Windows host is affected by a remote buffer overflow vulnerability. A flaw exists inside of 'nettransdll.dll' that may permit unauthenticated, remote attackers to execute arbitrary code in the context of the application. 'HistorySrv.exe' listens on port 777, and when a long request is received it may trigger a heap overflow.
SolutionInstall the patch referenced in the vendor's advisory.