CVE-2011-3142

WellinTech KingView 6.52-6.53 - Remote Code Execution via KVWebSvr.dll ValidateUser Method

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-3142. PoCs published by Carlos Mario Penagos Hollmann.

AI-analyzed exploit summary This exploit targets a heap-based buffer overflow in KingView 6.5.3 SCADA ActiveX control (KVWebSvr.dll) via the ValidateUser method. It uses a crafted payload with SEH overwrite to achieve remote code execution, spawning calc.exe as a demonstration.

Description

Stack-based buffer overflow in an ActiveX control in KVWebSvr.dll in WellinTech KingView 6.52 and 6.53 allows remote attackers to execute arbitrary code via a long second argument to the ValidateUser method.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Carlos Mario Penagos Hollmann · htmlremotewindows
https://www.exploit-db.com/exploits/16936

This exploit targets a heap-based buffer overflow in KingView 6.5.3 SCADA ActiveX control (KVWebSvr.dll) via the ValidateUser method. It uses a crafted payload with SEH overwrite to achieve remote code execution, spawning calc.exe as a demonstration.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: KingView SCADA 6.53 (English)
No auth needed
Prerequisites: Victim must visit a malicious webpage or open a malicious HTML file · KingView 6.53 ActiveX control must be installed and enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Various Sources x_refsource_misc
http://www.cnvd.org.cn/vulnerability/CNVD-2011-04541
Various Sources x_refsource_confirm
http://www.kingview.com/news/detail.aspx?contentid=537
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/16936
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/46757
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/72889

Scores

EPSS 0.3880
EPSS Percentile 98.4%

Details

CWE
CWE-119
Status published
Products (2)
wellintech/kingview 6.52
wellintech/kingview 6.53
Published Aug 16, 2011
Tracked Since Feb 18, 2026