[Ics-security] Fwd: Medium-[US-CERT] ICSA-12-102-(01-05) -Five advisories relating to multiple ICS products
Kelly Mahoney
mahoney at jlab.org
Wed Apr 11 21:56:59 EDT 2012
Note - The Koyo PLC is sold in the US as the Automation Direct Direct
Logic PLC line.
The lesson from many of the listed vulnerabilities is to disable
built-in web services in control system components - including network
components. They are an afterthought in most products and do not have
the horsepower to implement strong security.
The second lesson is that, even if a web server is disabled, keep the
firmware up to date.
ICS-CERT has released five Advisories titled:
ICSA-12-102-01 - Certec WebMI2ADS Multiple Vulnerabilities
ICSA-12-102-02 - Koyo Ecom Modules Multiple Vulnerabilities
ICSA-12-102-03 - MICROSYS PROMOTIC Use After Free Vulnerability
ICSA-12-102-04 - Siemens Scalance X Buffer Overflow Vulnerability
ICSA-12-102-05 - Siemens Scalance S Multiple Security Vulnerabilities
that can be accessed at www.ics-cert.org or directly through the following links:
http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-01.pdf (Certec)
http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-02.pdf (Koyo)
http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-03.pdf (MICROSYS)
http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-04.pdf (Siemens X)
http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-05.pdf (Siemens S)
ICS-CERT Operations Center
1-877-776-7585
www.ics-cert.org
ics-cert at dhs.gov
More information about the ICS-Security
mailing list