WellinTech KingSCADA < 'kxClientDownload.ocx' ActiveX RCE

High Nessus Plugin ID 83774


The WellinTech KingSCADA server installed on the remote host is affected by a remote code execution vulnerability.


The WellinTech KingSCADA server installed on the remote host is a version prior to It is, therefore, affected by a vulnerability in the 'kxClientDownload.ocx' ActiveX control. A remote attacker, by setting the ProjectURL property, can exploit this to download an arbitrary DLL file from a remote location, thus allowing the injection of executable code.


Upgrade KingSCADA to version

See Also


Plugin Details

Severity: High

ID: 83774

File Name: scada_kingscada_kxclientdownload_activex.nbin

Version: $Revision: 1.108 $

Type: local

Family: SCADA

Published: 2015/06/01

Modified: 2018/03/13

Dependencies: 59501, 13855

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:wellintech:kingscada

Required KB Items: SMB/Registry/Enumerated, installed_sw/WellinTech KingSCADA

Patch Publication Date: 2014/01/14

Vulnerability Publication Date: 2014/01/14

Reference Information

CVE: CVE-2013-2827

BID: 64941

OSVDB: 102135

ICSA: 13-344-01

EDB-ID: 31575