Saturday, October 19, 2019
DHS

AVEVA Vijeo Citect and Citect SCADA

This advisory contains mitigations for a stack-based buffer overflow vulnerability in the AVEVA Vijeo Citect and Citect SCADA.
DHS

Horner Automation Cscape

This advisory contains mitigations for improper input validation and out-of-bounds write vulnerabilities in Horner Automation's Cscape control system application programming software.
DHS

Siemens Industrial Real-Time (IRT) Devices

This advisory includes mitigations for an improper input validation vulnerability reported in the Siemens Industrial Real-Time (IRT) devices.
DHS

Siemens PROFINET Devices

This advisory contains mitigations for an uncontrolled resource consumption vulnerability in Siemens PROFINET devices.
DHS

Siemens SIMATIC WinCC and PCS7 (Update C)

This updated advisory is a follow-up to the advisory update titled ICSA-19-192-02 Siemens SIMATIC WinCC and PCS7 (Update B) that was published September 10, 2019, on the ICS webpage of us-cert.gov. This updated advisory includes mitigations for an unrestricted...
DHS

Siemens SIMATIC PCS7, WinCC, TIA Portal (Update D)

This updated advisory is a follow-up to the advisory update titled ICSA-19-134-08 Siemens SIMATIC PCS7, WinCC, TIA Portal (Update C) that was published September 10, 2019, on the ICS webpage on us-cert.gov. This updated advisory includes mitigations for SQL...
DHS

Philips Brilliance Computed Tomography (CT) System (Update A)

This updated medical advisory is a follow-up to the original advisory titled ICSMA-18-123-01 Philips’ Brilliance Computed Tomography (CT) System that was published May 3, 2018, on the ICS webpage on us-cert.gov. This updated medical advisory includes mitigations for execution...
DHS

Siemens Industrial Products Local Privilege Escalation Vulnerability (Update I)

This updated advisory is a follow-up to the updated advisory titled ICSA-16-313-02 Siemens Industrial Products Local Privilege Escalation Vulnerability (Update H) that was published June 14, 2018, on the ICS webpage on us-cert.gov. This updated advisory contains mitigation details...
DHS

SMA Solar Technology AG Sunny WebBox

This advisory includes mitigations for a cross-site request forgery vulnerability reported in the SMA Solar Technology AG Sunny WebBox communications hub.
DHS

GE Mark VIe Controller

This advisory includes mitigations for improper authorization and use of hard-coded credentials vulnerabilities reported in GE’s Mark VIe controller.
DHS

Siemens SIMATIC WinAC RTX (F) 2010

This advisory includes mitigations for an uncontrolled resource consumption vulnerability reported in the Siemens SIMATIC WinAC RTX (F) 2010 software controller for PC-based automation solutions.
DHS

Siemens SIMATIC IT UADM

This advisory includes mitigations for an inadequate encryption strength vulnerability reported in the Siemens SIMATIC IT Unified Architecture Discrete Manufacturing (UADM) production management software.
DHS

Interpeak IPnet TCP/IP Stack

This medical advisory contains mitigations for stack-based buffer overflow, heap-based buffer overflow, integer underflow, improper restriction of operations within the bounds of a memory buffer, race condition, argument injection, and null pointer dereference vulnerabilities in the Interpeak IPnet TCP/IP...
DHS

Interpeak IPnet TCP/IP Stack

This advisory contains mitigations for stack-based buffer overflow, heap-based buffer overflow, integer underflow, improper restriction of operations within the bounds of a memory buffer, race condition, argument injection, and null pointer dereference vulnerabilities in the Interpeak IPnet TCP/IP stack.
DHS

Yokogawa Products

This advisory includes mitigations for an unquoted search path or element vulnerability reported in Yokogawa’s Exaopc, Exaplog, Exaquantum, Exasmoc, Exarqe, GA10, and InsightSuiteAE products.
DHS

Moxa EDR 810 Series

This advisory includes mitigations for improper input validation and improper access control vulnerabilities reported in Moxa’s EDR 810 router.
DHS

Tridium Niagara

This advisory contains mitigations for information exposure and improper authorization vulnerabilities in Tridium's Niagara business application framework software.
DHS

WECON LeviStudioU (Update A)

This updated advisory is a follow-up to the original advisory titled ICSA-19-036-03 WECON LeviStudioU that was published February 5, 2019, on the ICS webpage on us-cert.gov. This advisory includes mitigations for stack-based buffer overflow, heap-based buffer overflow, and memory...
DHS

Advantech WebAccess

<p>This advisory contains mitigations for code injection, command injection, stack-based buffer overflow, and improper authorization vulnerabilities in Advantech's WebAccess HMI platform.</p>
DHS

Siemens SINEMA Remote Connect Server

<p>This advisory includes mitigations for improper restriction of excessive authentication attempts, information exposure, cross-site request forgery, and use of password hash with insufficient computational effort vulnerabilities in Siemens' SINEMA Remote Connect Server.</p>
The Register

Deus ex hackina: It took just 10 minutes to find data-divulging demons corrupting Pope’s Click to Pray eRosary app

Vatican coders exorcise API gremlins but, we must confess, they missed little monster.... Exclusive  The technology behind the Catholic Church’s latest innovation, an electronic rosary, is so insecure, it can be trivially hacked to siphon off worshipers' personal information.…
SC Magazine

Trojanized Russian-language Tor browser lets attacks steal from users’ e-wallets

Researchers have discovered a trojanized version of a Tor private browser that targets Russian-speaking dark web marketplace visitors and lets cybercriminals steal from their e-wallet transactions. The developers behind the malicious browser have so far stolen at least $40,000 in...
SC Magazine

UC Browser potentially endangers 500 million users

The popular Android browser UC Browser was found to break several Google mobile app rules possibly placing up to 500 million of its users at risk. UC Browser, which is available from the Google Play store, was found by Zscaler ThreatLabZ...
ZDNet

US stopped using floppy disks to manage nuclear weapons arsenal

US Air Force switches to secure solid-state-based solution to replace antiquated floppy disks in SACCS nuclear weapons management system.
Bruce Schneier

Friday Squid Blogging: Six-Foot-Long Mass of Squid Eggs Found on Great Barrier Reef

It's likely the diamondback squid. There's a video. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here.