NOTE: The Wonderware Historian is part of the System Platform but is not affected by this Security Update. InTouch 10.0 to 10.5 only (earlier versions of InTouch are not affected). ArchestrA Application Object Toolkit 3.2 and all prior versions.Wonderware Information Server 4.5 and all prior versions.InFusion CE/FE/SCADA 2.5 and all prior versions.Foxboro Control Software Version 3.1 and all prior versions.Wonderware Application Server 2012 and all prior versions.The following Invensys products and versions are affected: Unuver has tested the patch and verified that it resolves the vulnerabilities. Invensys has produced a patch that resolves these vulnerabilities. Independent researcher Celil Unuver from SignalSec Corporation has identified two buffer overflow vulnerabilities in the WWCabFile component of the Wonderware System Platform, which is used by multiple applications that run on the platform. This web page release was delayed to allow users time to download and install the update. ICS-CERT originally released Advisory ICSA-12-081-01P on the US-CERT secure portal on March 21, 2012.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |