The KCHARTXYLib.KChartXY ActiveX control in KChartXY.ocx before 65.30.30000.10002 in WellinTech KingView before 6.53 does not properly restrict SaveToFile method calls, which allows remote attackers to create or overwrite arbitrary files, and subsequently execute arbitrary programs, via the single pathname argument, as demonstrated by a directory traversal attack.
References
Link | Resource |
---|---|
http://www.exploit-db.com/exploits/28085/ | |
http://ics-cert.us-cert.gov/advisories/ICSA-13-295-01 | Patch US Government Resource |
Configurations
Information
Published : 2013-10-25 13:55
Updated : 2013-10-28 06:39
NVD link : CVE-2013-6128
Mitre link : CVE-2013-6128
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
wellintech
- kingview