Remote Code Execution and Denial of Service in WellinTech KingHistorian
CVE-2012-2559

Currently unrated

Key Information:

Vendor: Wellintech
Status: Kinghistorian
Vendor: CVE Published:; 5 July 2012

Summary

WellinTech KingHistorian version 3.0 is susceptible to a vulnerability that enables remote attackers to execute arbitrary code or disrupt services. This can be achieved by sending a specially crafted packet to TCP port 5678, which can lead to unauthorized actions or a denial of service scenario when the application attempts to process the malformed request.

References

http://www.us-cert.gov/control_systems/pdf/ICSA-12-185-01...

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 5, 2012