Buffer overflow in Wellintech Kingview

CVE-2012-1832

WellinTech KingView 6.53 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a crafted packet to (1) TCP or (2) UDP port 2001.

Vulnerability class: Buffer Overflow

EPSS: 0.021 (84.5th percentile) — read the EPSS interpretation.

Affected products

Wellintech Kingview — versions 3.0, 6.5.30.2010.18018, 6.52
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cret@cert.org (US Government Resource, Patch, x_refsource_MISC)
cret@cert.org (x_refsource_CONFIRM, Patch, Vendor Advisory)