CVE-2013-2827 Information

Description

An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2 KingAlarm&Event before 3.1 and KingGraphic before 3.1.2 allows remote attackers to download arbitrary DLL code onto a client machine and execute this code via the ProjectURL property value.

Reference

http://ics-cert.us-cert.gov/advisories/ICSA-13-344-01