CVE-2013-6128

WellinTech KingView < 6.52 - Arbitrary File Write via KChartXY ActiveX SaveToFile Method

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-6128. PoCs published by blake.

AI-analyzed exploit summary This exploit leverages an unsafe ActiveX control (KChartXY) in KingView 6.53 to overwrite arbitrary files via the SaveToFile method. The PoC demonstrates file creation/overwrite by targeting win.ini through directory traversal.

Description

The KCHARTXYLib.KChartXY ActiveX control in KChartXY.ocx before 65.30.30000.10002 in WellinTech KingView before 6.53 does not properly restrict SaveToFile method calls, which allows remote attackers to create or overwrite arbitrary files, and subsequently execute arbitrary programs, via the single pathname argument, as demonstrated by a directory traversal attack.

Exploits (1)

exploitdb WORKING POC VERIFIED
by blake · htmllocalwindows
https://www.exploit-db.com/exploits/28085

This exploit leverages an unsafe ActiveX control (KChartXY) in KingView 6.53 to overwrite arbitrary files via the SaveToFile method. The PoC demonstrates file creation/overwrite by targeting win.ini through directory traversal.

Classification
Working Poc 100%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: KingView 6.53
No auth needed
Prerequisites: Victim must visit a malicious webpage with Internet Explorer · KingView 6.53 ActiveX control must be installed and not killed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/28085/
Patch, US Government Resource x_refsource_misc
http://ics-cert.us-cert.gov/advisories/ICSA-13-295-01

Scores

EPSS 0.0249
EPSS Percentile 82.5%

Details

CWE
CWE-264
Status published
Products (1)
wellintech/kingview < 6.52
Published Oct 25, 2013
Tracked Since Feb 18, 2026