Control Systems

• Home

• Calendar

• ICS-CERT

• ICSJWG

• Information Products

• Training

• Recommended Practices

• Secure Architecture Design

• Assessments

• Standards & References

• Related Sites

• FAQ

Control Systems Security Program (CSSP)

ICS-CERT Advisories and Reports Archive

Monthly Monitors  |  Alerts & Advisories (by Vendor)  |  Other Alerts & Advisories   |  Other Reports  
Notable ICS-Related Vulnerabilities

MONTHLY MONITORS

---

2012: August  | June-July  | May  | April  | March  | February  | January |
2011: December   |  November  |  October   |  September  |  July-August  |  June  |  May  |  April

ALERTS & ADVISORIES (BY VENDOR)

---

A    B    C    D    E    F    G    H    I    J    K    L    M    N    O    P    Q    R    S    T    U    V    W    X    Y    Z   # 

 

ABB

ABB Multiple Components Buffer Overflow (UPDATE), ICSA-12-095-01A (April 10, 2012)

ABB Multiple Components Buffer Overflow, ICSA-12-095-01 (April 04, 2012)

ABB Robot Communications Runtime Buffer Overflow, ICSA-12-059-01 (February 29, 2012)

 

Advantech/BroadWin

Advantech BroadWin RPC Server Vulnerability, ICS-ALERT-12-039-01 (February 08, 2012)

Advantech BroadWin WebAccess Multiple ActiveX Vulnerabilities, ICS-ALERT-11-245-01 (September 02, 2011)

Advantech OPC Server Buffer Overflow, ICSA-11-279-01 (November 04, 2011)

Advantech Studio ISSymbol ActiveX Buffer Overflow, ICSA-12-137-02 (May 16, 2012)

Advantech Studio ISSymbol ActiveX Control Buffer Overflow Vulnerabilities, ICS-ALERT-11-131-01 (May 11, 2011)

Advantech Studio Test Web Server Buffer Overflow, ICSA-10-337-01 (January 03, 2011)

Advantech WebAccess ActiveX Vulnerability, ICS-ALERT-11-306-01 (November 02, 2011)

Advantech WebAccess Multiple Vulnerabilities, ICSA-12-047-01 (February 16, 2012)

Advantech WebAccess Multiple Vulnerabilities (UPDATE), ICSA-12-047-01A (February 17, 2012)

BroadWin WebAccess, ICS-ALERT-11-081-01 (March 22, 2011)

BroadWin WebAccess RPC Vulnerability, ICSA-11-094-02 (April1 04, 2011)

BroadWin WebAccess RPC Vulnerability (UPDATE), ICSA-11-094-02A (November 04, 2011)

 

AGG Software
AGG SCADA Viewer OPC Buffer Overflow, ICSA-11-018-01 (January 24, 2011)

 

Arbiter
Arbiter Systems Power Sentinel Denial of Service Vulnerability, ICSA-12-249-01 (September 05, 2012)

 

ARC Informatique
ARC Informatique PcVue Multiple Vulnerabilities, ICSA-11-340-01 (December 06, 2011)

 

Automated Solutions
Automated Solutions OPC Vulnerability, ICSA-10-322-02 (November 18, 2010)

Automated Solutions OPC Vulnerability (UPDATE), ICSA-10-322-02A (January 21, 2011)

 

AzeoTech
AzeoTech DAQFactory Networking Vulnerabilities, ICSA-11-122-01 (June 24, 2011)

AzeoTech DAQFactory Stack Overflow, ICSA-11-264-01 (September 21, 2011)

AzeoTech DAQFactory Stack Overflow, ICS-ALERT-11-256-02 (September 13, 2011)

 

Beckhoff
Beckhoff TwinCAT, ICSA-11-279-04 (October 06, 2011)

Beckhoff TwinCAT Denial of Service, ICS-ALERT-11-256-06 (September 13, 2011)

 

Certec
Certec atvise Server Remote DOS, ICSA-12-018-02 (January 18, 2012)

Certec atvise webMI Multiple Vulnerabilities, ICS-ALERT-11-283-02 (October 10, 2011)

Certec WebMI2ADS Multiple Vulnerabilities, ICSA-12-102-01 (April 11, 2012)

 

CISCO
Cisco Network Building Mediator, ICSA-10-147-01 (May 27, 2010)

 

Cogent Real-Time Systems Inc
Cogent DataHub Multiple Vulnerabilities, ICSA-11-280-01 (October 07, 2011)

Cogent DataHub Multiple Vulnerabilities, ICS-ALERT-11-256-03 (September 13, 2011)

Cogent DataHub XSS and CRLF, ICSA-12-016-01 (January 16, 2012)

 

COPA-DATA GMbH
ING. Punzenberger COPA-DATA GMBH DoS Vulnerabilities, ICSA-12-013-01 (February 07, 2012)

 

Ecava
Ecava IntegraXor, ICS-CERT 10-355-01 (December 21, 2010)

Ecava IntegraXor ActiveX Directory Traversal, ICSA-12-083-01 (March 23, 2012)

Ecava IntegraXor Buffer Overflow, ICSA-10-322-01 (December 15, 2010)

Ecava IntegraXor Directory Traversal, ICSA-10-362-01 (December 28, 2010)

Ecava IntegraXor DLL Hijacking, ICSA-11-147-01 (May 27, 2011)

Ecava IntegraXor DLL Hijacking (UPDATE), ICSA-11-147-01B (June 02, 2011)

Ecava IntegraXor DLL Hijacking (UPDATE), ICSA-11-147-01A (May 27, 2011)

Ecava IntegraXor SQL, ICSA-11-082-01 (March 23, 2011)

Ecava IntegraXor XSS, ICSA-11-147-02 (May 27, 2011)

 

Emerson
Emerson DeltaV Buffer Overflow, ICSA-12-265-01 (September 28, 2012)

Emerson DeltaV Multiple Vulnerabilities, ICSA-12-138-01 (May 30, 2012)

 

Fultek
Fultek WinTr Directory Traversal, ICSA-12-262-01 (September 18, 2012)

 

GarrettCom
GarrettCom - Use of Hard-Coded Password, ICSA-12-243-01 (August 30, 2012)

 

GE
GE D20ME PLC Multiple Vulnerabilities, ICS-ALERT-12-019-01 (January 19, 2012)

GE D20ME PLC Multiple Vulnerabilities (UPDATE), ICS-ALERT-12-019-01A (April 09, 2012)

GE Intelligent Platforms Proficy HTML Help Vulnerabilities, ICSA-12-131-02 (June 27, 2012)

GE Intelligent Platforms Proficy Real-Time Information Portal Directory Traversal, ICSA-12-032-03 (March 13, 2012)

GE Proficy Historian ihDataArchiver, ICSA-12-032-01 (March 13, 2012)

GE Proficy Historian Web Administrator XSS, ICSA-11-243-02 (November 01, 2011)

GE Proficy Plant Applications, ICSA-12-032-02 (March 13, 2012)

GE Intelligent Platforms Proficy Plant Applications Buffer Overflow, ICSA-11-243-01 (November 01, 2011)

GE Intelligent Platforms Proficy Historian Data Archiver Buffer Overflow Vulnerability, ICSA-11-243-03 (November 01, 2011)

GE Proficy Historian Data Archiver Buffer Overflow Vulnerability (UPDATE), ICSA-11-243-03A (November 29, 2011)

Honeywell
Honeywell HMIWEB Browser Buffer Overflow, ICSA-12-150-01 (September 07, 2012)

Honeywell ScanServer ActiveX Control, ICSA-11-103-01 (April 13, 2011)

Honeywell ScanServer ActiveX Control (UPDATE), ICSA-11-103-01A (August 15, 2011) 

Honeywell TEMA Remote Installer ActiveX Vulnerability, ICSA-11-285-01 (October 12, 2011)

 

ICONICS
ICONICS GENESIS Multiple Vulnerabilities, ICSA-11-108-01 (April 18, 2011)

ICONICS GENESIS32 and BizViz ActiveX Stack Overflow, ICSA-11-131-01 (May 11, 2011)

ICONICS GENESIS32-BizViz Security Configurator, ICSA-12-212-01 (July 30, 2012)

ICONICS GENESIS32 Multiple Memory Corruption, ICSA-11-273-01 (September 30, 2011)

ICONICS Login ActiveX Vulnerability, ICSA-11-182-02 (July 01, 2011)

ICONICS TrustedZone Vulnerability, ICSA-11-182-01 (July 01, 2011)

Multiple Vulnerabilities in Iconics Genesis, ICS-ALERT-11-080-02 (March 21, 2011)

 

Inductive Automation
Inductive Automation Ignition Information Disclosure Vulnerability, ICSA-11-231-01 (August 19, 2011)

 

InduSoft
InduSoft ISSymbol ActiveX Control Buffer Overflow, ICSA-12-249-03 (September 05, 2012)

InduSoft ISSymbol ActiveX Control Buffer Overflow, ICSA-11-273-02 (September 30, 2011)

InduSoft ISSymbol ActiveX Control Buffer Overflow, ICSA-11-168-01 (June 17, 2011)

InduSoft ISSymbol ActiveX Control Buffer Overflow (UPDATE), ICSA-11-168-01A (June 24, 2011)

InduSoft Web StudioMultiple Vulnerabilities, ICSA-11-319-01 (November 15, 2011)

 

Innominate
Innominate mGuard Weak HTTPS and SSH Keys, ICSA-12-167-01 (June 15, 2012)

 

Intellicom
Intellicom Netbiter WebSCADA Multiple Vulnerabilities, ICSA-10-316-01 (November 12, 2010)

Intellicom Netbiter WebSCADA Multiple Vulnerabilities (UPDATE), ICSA-10-316-01A (December 16, 2010)

Multiple Vulnerabilities in Intellicom's Netbiter WebSCADA, ICS-ALERT-10-293-01 (October 20, 2010)

 

Invensys
Wonderware ActiveX Vulnerabilities, ICSA-11-332-01  (December 20, 2011)

Wonderware HMI Reports XSS and Write Access Violation, ICSA-12-039-01 (February 08, 2012)

Wonderware InBatch ActiveX Buffer Overflow, ICSA-11-094-01 (April 13, 2011)

Wonderware InBatch ActiveX Vulnerabilities (UPDATE), ICSA-11-332-01A (January 02, 2012)

Wonderware InBatch Vulnerability, ICSA-10-348-01 (December 14, 2010)

Wonderware InBatch Vulnerability (UPDATE), ICSA-10-348-01A (March 03, 2011)

Wonderware Information Server, ICSA-11-195-01 (July 26, 2011)

Wonderware Information Server Multiple Vulnerabilities, ICSA-12-062-01 (April 02, 2012)

Wonderware Intouch 10 DLL Hijack, ICSA-12-177-02 (July 23, 2012)

Wonderware System Platform Buffer Overflows, ICSA-12-081-01 (March 30, 2012)

 

IOServer
IOServer OPC Server Multiple Vulnerabilities, ICSA-12-258-01 (September 14, 2012)

 

IRAI
IRAI AUTOMGEN Buffer Overflow Vulnerability, ICS-ALERT-11-283-01 (October 10, 2011)

 

Kessler-Ellis Products
Kessler-Ellis Products Infilink HMI V5.00.23, ICS-ALERT-12-212-01 (July 30, 2012)

 

Koyo
Koyo ECOM100 Multiple Vulnerabilities, ICS-ALERT-12-020-05 (January 20, 2012)

Koyo ECOM100 Multiple Vulnerabilities (UPDATE), ICS-ALERT-12-020-05A (February 14, 2012)

Koyo Ecom Modules Multiple Vulnerabilities, ICSA-12-102-02 (April 11, 2012)

 

Measuresoft
Measuresoft ScadaPro, ICSA-11-263-01 (September 20, 2011)

Measuresoft ScadaPro, ICS-ALERT-11-256-04 (September 13, 2011)

Measuresoft ScadaPro dll Hijack, ICSA-12-145-01 (May 24, 2012)

 

Microsoft
Microsoft Remote Desktop Protocol Memory Corruption, ICSA-12-079-01 (March 19, 2012)

Microsys, SPOL.S R.O. Promotic, ICS-ALERT-11-286-01 (October 13, 2011)

 

Microsys
Microsys Promotic Multiple Vulnerabilities, ICSA-12-024-02 (January 24, 2012)

Microsys Promotic Use After Free Vulnerability, ICSA-12-102-03 (April 11, 2012)

Microsys Promotic Vulnerability, ICS-ALERT-11-333-01 (November 29, 2011)

 

MOXA
MOXA Device Manager Buffer Overflow, ICSA-10-301-01 (October 28, 2010)

MOXA Device Manager Buffer Overflow (UPDATE), ICSA-10-301-01A (October 28, 2010)

Vulnerability in MOXA Device Manager, ICS-ALERT-10-293-02 (October 20, 2010)

 

Ocean Data Systems
Ocean Data Systems Dream Reports XSS and Write Access Violation Vulnerabilities, ICSA-12-024-01 (January 24, 2012)

 

Open Automation
Open Automation Software OPC Systems.NET, ICSA-12-012-01 (January 12, 2012)

Open Automation Software OPC Systems.NET (UPDATE), ICSA-12-012-01A (January 26, 2012)

Open Automation Software OPC Systems.NET Vulnerability, ICS-ALERT-11-285-01 (October 12, 2011)

 

Optima
Optima APIFTP Server, ICS-ALERT-11-332-03 (November 28, 2011)

 

Optimalog
Optimalog Optima PLC Multiple Vulnerabilities, ICSA-12-271-02 (September 27, 2012)

 

ORing Industrial Networking
ORing Industrial Networking IDS 5042 Hard-Coded Credentials Vulnerability, ICSA-12-263-02 (September 19, 2012)

 

OSIsoft
OSIsoft PI OPC DA Interface Buffer Overflow, ICSA-12-201-01 (July 19, 2012)

 

PcVue
PcVue HMI/SCADA Multiple ActiveX Vulnerabilities, ICS-ALERT-11-271-01 (September 28, 2011)

 

Pro-face
Pro-face Pro-Server EX Multiple Vulnerabilities, ICS-ALERT-12-137-01 (May 16, 2012)

Pro-face Pro-Server EX Multiple Vulnerabilities, ICSA-12-179-01 (June 27, 2012)

 

Progea
Progea Movicon Memory Corruption, ICSA-12-131-01 (May 10, 2012)

Progea Movicon Multiple Vulnerabilities, ICS-ALERT-11-256-01 (September 13, 2011)

Progea Movicon Power HMI Vulnerabilities, ICSA-11-294-01 (October 21, 2011)

Progea Movicon TCPUploadServe, ICSA-11-056-01 (March 15, 2011)

Progea Movicon TCPUploadServe (UPDATE), ICSA-11-056-01A (June 14, 2011)

 

RealFlex Technologies
Multiple Vulnerabilities in RealFlex RealWin, ICS-ALERT-11-080-04 (March 21, 2011)

RealFlex RealWin Multiple Vulnerabilities, ICSA-11-110-01 (April 20, 2011)

RealWin Buffer Overflow, ICSA-10-313-01 (November 09, 2010)

RealWin Buffer Overflows, ICS-ALERT-10-305-01 (November 01, 2010)

 

RealWinDemo
RealWinDemo DLL Hijack, ICSA-12-251-01 (September 07, 2012)

 

Rockwell Automation
Rockwell Automation ControlLogix Multiple PLC Vulnerabilities (UPDATE), ICS-ALERT-12-020-02A (February 14, 2012)

Rockwell Automation ControlLogix PLC Multiple Vulnerabilities, ICS-ALERT-12-020-02 (January 20, 2012)

Rockwell Automation FactoryTalk RNADiagReceiver, ICSA-12-088-01 (March 28, 2012)

Rockwell Automation FactoryTalk RNADiagReceiver (UPDATE), ICSA-12-088-01A (April 06, 2012)

Rockwell Automation FactoryTalk RNADiagReceiver, ICS-ALERT-12-017-01 (January 17, 2012)

Rockwell FactoryTalk Diag Viewer Memory Corruption, ICSA-11-175-01 (June 24, 2011)

Rockwell-PLC5, ICSA-10-070-02 (March 11, 2010)

Rockwell RSLinx EDS, ICSA-11-161-01 (June 10, 2011)

Rockwell RSLogix, ICS-ALERT-11-256-05 (September 13, 2011)

Rockwell RSLogix (UPDATE), ICS-ALERT-11-256-05A  (September 19, 2011)

Rockwell RSLogix Denial-of-Service Vulnerability, ICSA-11-273-03 (September 30, 2011)

Rockwell RSLogix Denial-of-Service Vulnerability (UPDATE), ICSA-11-273-03A (October 06, 2011)

RSLinx, ICSA-10-070-01 (March 11, 2010)

RSLinx (UPDATE), ICSA-10-070-01A (May 03, 2010)

 

RuggedCom
Key Management Errors in RuggedCom's Rugged Operating System, ICS-ALERT-12-234-01A - (UPDATE) (August 31, 2012)

RuggedCom - Hardcoded SSL Private Key, ICS-ALERT-12-234-01 (August 21, 2012)

RuggedCom Weak Cryptography for Password Vulnerability, ICSA-12-146-01A (June 18, 2012)

RuggedCom Weak Cryptography for Password Vulnerability, ICSA-12-146-01 (May 25, 2012)

RuggedCom Weak Cryptography for Password Vulnerability, ICS-ALERT-12-116-01 (April 25, 2012)

RuggedCom Weak Cryptography for Password Vulnerability (UPDATE), ICS-ALERT-12-116-01A (April 27, 2012)

 

SafeNet
Safenet Sentinel and 7-T Input Sanitization Vulnerability, ICSA-11-314-01 (December 12, 2011)

 

Samsung
Samsung Data Management Server, ICSA-11-069-01 (May 06, 2011)

Samsung Data Management Server (UPDATE), ICSA-11-069-01B (June 07, 2011)

Samsung Data Management Server (UPDATE), ICSA-11-069-01A (May 09, 2011)

Samsung Data Management Server Root Access, ICS-ALERT-11-129-01 (May 09, 2011)

 

ScadaTEC
Scada Engine BACnet OPC Client Buffer Overflow Vulnerability, ICSA-10-264-01 (September 21, 2010)

Scada Engine BACnet OPC Client Buffer Overflow Vulnerability, ICS-ALERT-10-260-01 (September 17, 2010)

 

Scadatec Limited
Scadatec Procyon Telnet Buffer Overflow, ICSA-11-216-01 (September 06, 2011)

 

Schneider Electric
CitectSCADA and Mitsubishi MX4 SCADA Batch Server Buffer Overflow, ICSA-11-279-02 (November 08, 2011)

ClearSCADA Remote Authentication Bypass, ICSA-11-173-01 (August 25, 2011)

Multiple Vulnerabilities in ClearScada Software, ICSA-10-314-01 (February 01, 2011)

Multiple Vulnerabilities in ClearScada Software (UPDATE), ICSA-10-314-01A (February 16, 2011)

Schneider Electric Modicon Quantum Multiple Vulnerabilities, ICS-ALERT-12-020-03 (January 20, 2012)

Schneider Electric Modicon Quantum Multiple Vulnerabilities (UPDATE), ICS-ALERT-12-020-03B (April 09, 2012)

Schneider Electric Modicon Quantum Vulnerabilities (UPDATE), ICS-ALERT-12-020-03A (February 14, 2012)

Schneider Electric UnitelWay Buffer Overflow, ICSA-11-277-01 (October 20, 2011)

Schneider Electric Vijeo Historian Web Server Multiple Vulnerabilities, ICSA-11-307-01 (November 28, 2011)

Schneider Ethernet Module Hard Coded Credentials, ICSA-12-018-01 (January 18, 2012)

Schneider Quantum Ethernet Module Credentials, ICS-ALERT-11-346-01 (December 12, 2011)

Schweitzer
Schweitzer SEL-2032 Plaintext Service Crash, ICS-ALERT-12-020-04 (January 20, 2012)

 

Sielco Sistemi
Sielco Sistemi Winlog Buffer Overflow, ICS-ALERT-12-166-01 (June 14, 2012)

Sielco Sistemi Winlog Buffer Overflow, ICSA-11-298-01 (December 06, 2011)

Sielco Sistemi Winlog Buffer Overflow (UPDATE), ICSA-11-298-01A (December 06, 2011)

Sielco Sistemi WinLog Lite SEH Overwrite Vulnerability, ICS-ALERT-12-277-01 (October 03, 2012)

Sielco Sistemi Winlog Mult Vulnerabilities, ICSA-12-213-01 (July 31, 2012)

Sielco Sistemi Winlog Multiple Vulnerabilties, ICS-ALERT-12-179-01 (June 27, 2012)

Sielco Sistemi Winlog Stack Overflow, ICSA-11-017-02 (January 17, 2011)

 

Siemens
Multiple Vulnerabilities in Siemens Tecnomatix FactoryLink, ICSA-11-091-01 (April 01, 2011)

Multiple Vulnerabilities in Siemens Tecnomatix FactoryLink (UPDATE), ICSA-11-091-01A (April 05, 2011)

Multiple Vulnerabilities in Siemens Tecnomatix FactoryLink, ICS-ALERT-11-080-01 (March 21, 2011)

Password Protection Vulnerability in Siemens SIMATIC Controllers, ICS-ALERT-11-186-01 (July 05, 2011)

Siemens S7-300_S7-400 Hardcoded Credentials, ICS-ALERT-11-204-01 (July 23, 2011)

Seimens S7-300_S7-400 Hardcoded Credentials (UPDATE), ICS-ALERT-11-204-01B (August 03, 2011)

Seimens S7-300_S7-400 Hardcoded Credentials (UPDATE), ICS-ALERT-11-204-01A (July 29, 2011)

Siemens S7-1200 Insecure Storage of HTTPS CA Certificate, ICSA-12-263-01 (September 19, 2012)

Siemens S7-1200 PLC, ICS-ALERT-11-161-01 (June 10, 2011)

Siemens Automation License Manager, ICSA-11-361-01 (December 27, 2011)

Siemens Automation License Manager, ICS-ALERT-11-332-01 (November 28, 2011)

Siemens Automation License Manager (UPDATE), ICS-ALERT-11-332-01A (December 02, 2011)

Siemens COMOS Database Privilege Escalation Vulnerability, ICSA-12-227-01 (August 14, 2012)

Siemens FactoryLink Multiple ActiveX Vulnerabilities, ICSA-11-343-01 (January 04, 2012)

Siemens Scalance S Multiple Security Vulnerabilities, ICSA-12-102-05 (April 11, 2012)

Siemens Scalance X Buffer Overflow Vulnerability, ICSA-12-102-04 (April 11, 2012)

Siemens SIMATIC HMI Authentication Vulnerabilities, ICSA-11-356-01 (December 22, 2011)

Siemens SIMATIC PLCs Reported Issues Summary, ICSA-11-223-01 (August 11, 2011)

Siemens SIMATIC PLCs Reported Issues Summary (UPDATE), ICSA-11-223-01A (August 22, 2011)

Siemens SIMATIC STEP 7 DLL Vulnerability, ICSA-12-205-02 (July 23, 2012)

Siemens SIMATIC S7-400 PN CPU DoS, ICSA-12-212-02 (July 30, 2012)

Siemens SIMATIC WinCC Flexible, ICS-ALERT-11-332-02 (November 28, 2011)

Siemens SIMATIC WinCC Flexible (UPDATE), ICS-ALERT-11-332-02A (December 02, 2011)

Siemens SIMATIC WinCC Multiple Vulnerabilities (UPDATE), ICSA-12-030-01A (April 18, 2012)

Siemens Synco OZW Default Password, ICSA-12-214-01 (August 01, 2012)

Siemens WinCC Exploitable Crashes, ICSA-11-175-02 (July 01, 2011)

Siemens WinCC Flexible Runtime Heap Overflow, ICSA-11-244-01 (September 06, 2011)

Siemens WinCC Insecure SQL Server Authentication, ICSA-12-205-01 (July 23, 2012)

Siemens WinCC Multiple Vulnerability, ICSA-12-158-01 (June 6, 2012)

Siemens WinCC WebNavigator Multiple Vulnerabilities, ICSA-12-256-01 (September 12, 2012)

USB Malware Targeting Siemens Control Software, ICSA-10-201-01 (July 20, 2010)

USB Malware Targeting Siemens Control Software (UPDATE), ICSA-10-201-01C (August 02, 2010)

USB Malware Targeting Siemens Control Software (UPDATE), ICSA-10-201-01B (July 23, 2010)

USB Malware Targeting Siemens Control Software (UPDATE), ICSA-10-201-01A (July 21, 2010)

 

SpecView
SpecView Directory Traversal, ICS-ALERT-12-214-01 (August 01, 2012)

 

Sunway
Sunway Force Control, ICSA-11-167-01 (June 16, 2011)

Sunway Force Control Vulnerabilities, ICS-ALERT-11-266-01 (September 23, 2011)

Sunway Force Control SCADA SEH, ICS-ALERT-11-238-01 (August 26, 2011)

Sunway Force Control SCADA SEH (UPDATE), ICS-ALERT-11-238-01A (August 31, 2011)

 

Tridium
Tridium Niagara Multiple Vulnerabilities, ICSA-12-228-01 (August 15, 2012)

Tridium Niagara Vulnerabilities, ICS-ALERT-12-195-01 (July 13, 2012)

 

Unitronics
Unitronics UNIOPC Server Input Handling Vulnerability, ICSA-11-279-03 (October 06, 2011)

Unitronics UNIOPC Server Input Handling Vulnerability (UPDATE), ICSA-11-279-03A (October 12, 2011)

 

VxWorks
Vxworks Vulnerabilities, ICSA-10-214-01 (August 02, 2010)

 

WAGO
WAGO IO 758 Default Linux Credentials, ICSA-12-249-02 (September 05, 2012)

WAGO IO 750 Multiple Vulnerabilities, ICS-ALERT-12-020-07 (January 20, 2012)

WAGO (Updated) - IO 750 Multiple Vulnerabilities, ICS-ALERT-12-020-07A (June 19, 2012)

WAGO IPC Multiple Vulnerabilities, ICS-ALERT-12-097-01 (April 06, 2012)

 

WellinTech
ActiveX Vulnerability in WellinTech KingView 6.53, ICS-ALERT-11-066-01 (March 07, 2011)

Wellintech KingSCADA Insecure Password Encryption, ICSA-12-129-01 (May 08, 2012)

WellinTech KingSCADA Insecure Password Encryption, ICS-ALERT-12-020-06 (January 20, 2012)

WellinTech KingView, ICSA-11-017-01 (January 17, 2011)

WellinTech KingView 6.53 KVWebSvr ActiveX, ICSA-11-074-01 (March 15, 2011)

WellinTech KingView Buffer Overflow, ICS-ALERT-11-011-01 (January 11, 2011)

WellinTech KingView DLL Hijack Vulnerability, ICSA-12-122-01 (May 01, 2012)

WellinTech KingView History Server Buffer Overflow, ICSA-11-355-02 (December 21, 2011)

WellinTech KingView Multiple Vulnerabilities, ICSA-12-185-01 (July 3, 2012)

WellinTech KingView User Credentials Not Securely Hashed, ICS-ALERT-12-212-02 (July 30, 2012)

 

Wonderware
Wonderware SuiteLink Unallocated Unicode String, ICS-ALERT-12-136-01 (May 15, 2012)

Wonderware SuiteLink Unallocated Unicode String DoS, ICSA-12-171-01 (June 19, 2012)

 

xArrow
xArrow Multiple Vulnerabilities, ICS-ALERT-12-065-01 (March 05, 2012)

xArrow Multiple Vulnerabilities, ICSA-12-145-02 (May 24, 2012)

 

3S Smart Software Solutions
3S CoDeSys, ICS-ALERT-11-336-01 (December 02, 2011)

3S CoDeSys (UPDATE), ICS-ALERT-11-336-01A (December 07, 2011)

3S Smart Software Solutions CoDeSys Vulnerabilities, ICSA-12-006-01 (January 06, 2012)

3S-Software CoDeSys Improper Access Control, ICS-ALERT-12-097-02 (April 06, 2012)

 

7-Technologies
7-Technologies Aquis DLL Hijacking, ICSA-12-025-01 (February 17, 2012)

7-Technologies Data Server Denial of Service, ICSA-11-335-01 (December 20, 2011)

7-Technologies IGSS 8 ODBC Server Remote Heap Corruption, ICSA-11-018-02 (February 08, 2011)

7-Technologies IGSS Buffer Overflow, ICSA-11-355-01 (December 21, 2011)

7-Technologies IGSS DoS, ICSA-11-132-01 (May 12, 2011)

7-Technologies IGSS DoS (UPDATE), ICSA-11-132-01A (June 06, 2011)

7-Technologies IGSS Multiple Vulnerabilities, ICSA-11-126-01 (May 06, 2011)

7-Technologies IGSS Multiple Vulnerabilities, ICS-ALERT-11-080-03 (March 21, 2011)

7-Technologies IGSS Remote Memory Corruption, ICSA-11-189-01 (July 08, 2011)

7-Technologies IGSS Remote Stack Overflow, ICSA-11-119-01 (April 29, 2011)

7-Technologies Interactive Graphical SCADA, ICSA-11-353-01 (January 16, 2012)

7-Technologies Termis DLL Hijacking, ICSA-12-025-02 (February 17, 2012)

7-Technologies Termis DLL Hijacking (UPDATE), ICSA-12-025-02A (February 20, 2012)

 

 

 

OTHER ALERTS & ADVISORIES

---

Control System Internet Accessibility, ICS-ALERT-11-343-01 (December 09, 2011)

Control System Internet Accessibility, ICS-ALERT-10-301-01 (October 28, 2010)

Control System Internet Accessibility, ICS-ALERT-11-343-01A (June 22, 2012)

Cyber Intrusion Mitigation Strategies (UPDATE), ICS-TIP-12-146-01A (July 19, 2012)

Dynamic Library Loading Vulnerability in Microsoft-Based Applications, ICS-ALERT-10-239-01 (August 27, 2010)

Federal Aviation Administration GPS Advisories, ICSA-11-025-01 (January 25, 2011)

Federal Aviation Administration GPS Advisories, ICS-ALERT-11-024-01 (January 24, 2011)

GLEG Agora SCADA+, ICSA-11-096-01 (April 06, 2011)

GLEG Agora SCADA+ Update 1.4, ICS-ALERT-11-230-01 (August 18, 2011)

GLEG Agora SCADA+ Update 1.1, ICS-ALERT-11-111-01 (April 21, 2011)

Gauss Malware, JSAR-12-222-01 (August 09, 2012)

Increasing Threat to Industrial Control Systems, ICS-ALERT-12-046-01 (February 15, 2012)

Malicious Indicators (UPDATE), EWIN-11-077-01A (March 26, 2011)

Mariposa Botnet, ICSA-10-090-01 (March 31, 2010)

McAfee Night Dragon, ICSA-11-041-01 (February10, 2011)

McAfee Night Dragon (UPDATE), ICSA-11-041-01A (February 11, 2011)

Microsoft Announces Out-of-Band Update, ICS-ALERT-10-211-01 (July 30, 2010)

NCCIC Advisory — Osama Bin Laden-Themed Phishing (2 May 2011)

NCCIC Advisory — Targeted Phishing Attacks (April 06, 2011)

NCCIC Bulletin — DNSChanger (201204301400) (April 30, 2012)

S4 Disclosure of Multiple PLC Vulnerabilities in Major ICS Vendors, ICS-ALERT-12-020-01 (January 20, 2012)

Shamoon-DistTrack Malware, JSAR-12-241-01A (September 27, 2012)

Shamoon/DistTrack Malware, JSAR-12-241-01 (August 29, 2012)

sKyWIper (UPDATE), JSAR-12-151-01A (June 05, 2012)

sKyWIper, JSAR-12-151-01 (May 30, 2012)

Solar Flare Warning, ICS-ALERT-12-068-01 (March 08, 2012)

Solar Magnetic Storm Advisory, ICSA-11-084-01 (March 25, 2011)

SSH Scanning Activity Targets Control Systems, ICS-ALERT-12-034-01 (February 03, 2012)

Stuxnet Malware Mitigation, ICSA-10-238-01 (August 26, 2010)

Stuxnet Malware Mitigation (UPDATE), ICSA-10-238-01B (September 15, 2010)

Stuxnet Malware Mitigation (UPDATE), ICSA-10-238-01A (September 02, 2010)

Vendor Admin Accounts Warning, ICSA-10-228-01 (August 16, 2010)

W32.Duqu-Malware, JSAR-11-312-01 (November 08, 2011)

W32.Duqu-Malware (UPDATE), ICS-ALERT-11-291-01E (November 01, 2011)

W32.Duqu-Malware (UPDATE), ICS-ALERT-11-291-01D (October 26, 2011)

W32.Duqu-Malware Targeting ICS Manufacturers, ICS-ALERT-11-291-01 (October 18, 2011)

W32.Duqu-Malware Targeting ICS Manufacturers (UPDATE), ICS-ALERT-11-291-01B (October 21, 2011)

W32.Duqu-Malware Targeting ICS Manufacturers (UPDATE), ICS-ALERT-11-291-01A (October 19, 2011)

 

 

 

OTHER REPORTS

---

Common Cybersecurity Vulnerabilities in Industrial Control Systems (May 2011)

Cross-Vendor Working Group Announcement (July 27, 2011)

ICS-CERT 2010 Year in Review (January 2011)

ICS-CERT Incident Summary Report (June 28, 2012)

Illinois Water Pump Failure Report, ICSB-11-327-01 (November 23, 2011)

US-CERT Early Warning and Indicator Notice, EWIN-11-077-01A (March 26, 2011)

 

 

NOTABLE ICS-RELATED VULNERABILITIES

---

AREVA e-terrahabitat SCADA Systems Vulnerabilities (February 2009)

Cisco Network Building Mediator Vulnerabilities (May 2010)

IntelliCom Netbiter Devices Have Default HICP Passwords (April 2010)

IntelliCom Netbiter Config HICP Hostname Buffer Overflow (March 2010)

Microsoft Windows Automatically Executes Code Specified in Shortcut Files (July 2010)

Rockwell Automation Allen-Bradley MicroLogix PLC Authentication and Authorization Vulnerabilities (January 2010)

S2 NetBox Allows Unauthenticated HTTP Access to Node Logs, Backups, and Employee Photographs (June 2010)