Vulnerability Details CVE-2018-20410
WellinTech KingSCADA before 3.7.0.0.1 contains a stack-based buffer overflow. The vulnerability is triggered when sending a specially crafted packet to the AlarmServer (AEserver.exe) service listening on TCP port 12401.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.8%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://github.com/flypuma/vul/blob/master/kingview/copy_argumengt_overflow/Debugging.md
- https://github.com/flypuma/vul/blob/master/kingview/copy_argumengt_overflow/poc.py
- https://github.com/flypuma/vul/blob/master/kingview/copy_argumengt_overflow/Debugging.md
- https://github.com/flypuma/vul/blob/master/kingview/copy_argumengt_overflow/poc.py
Products affected by CVE-2018-20410
-
cpe:2.3:a:wellintech:kingscada:3.1
-
cpe:2.3:a:wellintech:kingscada:3.1.2
-
cpe:2.3:a:wellintech:kingscada:3.1.2.13