Sunway ForceControl WebServer 'httpsvr.exe' Buffer Overflow Vulnerability

Summary
This host is installed with Sunway ForceControl and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow remote attackers to cause denial of service or execute arbitrary code. Impact Level: System/Application
Solution
Vendor has released a patch to fix the issue, please refer below link for patch information. http://www.sunwayland.com.cn/news_info_.asp?Nid=3593
Insight
The flaw exists due to an error in the WebServer component (httpsvr.exe) and can be exploited to cause a heap-based buffer overflow via a specially crafted URL sent in a web request.
Affected
Sunway ForceControl 6.1 SP1, SP2, and SP3.
References