WellinTech KingScada kxClientDownload ActiveX Exploit

By properly setting the ProjectURL property, it is possible for an attacker to download an arbitrary dll file from a remote location and run the code in the dll in the context of the target process.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2013-2827
Product Version: 
2014_R1
Released Date: 
Thursday, May 15, 2014 - 00:00