CVE-2013-2827

WellinTech KingSCADA <3.1.2 - RCE

Title source: llm

Description

An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 allows remote attackers to download arbitrary DLL code onto a client machine and execute this code via the ProjectURL property value.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/31575

View Code ZIP pw:eip

metasploit WORKING POC GOOD

by Andrea Micalizzi, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/wellintech_kingscada_kxclientdownload.rb

View Code ZIP pw:eip

References (1)

[Patch, US Government Resource] http://ics-cert.us-cert.gov/advisories/ICSA-13-344-01

Scores

EPSS 0.6052

EPSS Percentile 98.3%

Details

CWE

CWE-94

Status published

Products (3)

wellintech/kingalarm\&event < 2.0.2

wellintech/kinggraphic < 3.1

wellintech/kingscada < 3.1

Published Jan 15, 2014

Tracked Since Feb 18, 2026