OVERVIEW This advisory is a follow-up to, published on the ICS-CERT Web site on March 20, 2011. An independent security researcher has published 13 vulnerabilities with proof of concept (PoC) code for the ICONICS GENESIS32 and GENESIS64 human-machine interface (HMI)/supervisory control and data acquisition (SCADA) products. The 13 remotely exploitable vulnerabilities exploit the GenBroker.exe service on Port 38080/TCP. The researcher states that the vulnerabilities fall within two classifications: twelve involve integer overflows; one involves memory corruption.

After the aforementioned vulnerabilities were disclosed, a second, security researcher, Joel Langill of SCADAhacker, is coordinating with the ICS-CERT on another vulnerability in the ICONICS GENESIS products. Langill reported a vulnerability in the SafeNet Sentinel License Monitor httpd 7.3 service on Port 6002/TCP, which is used by the ICONICS GENESIS32 and GENESIS64 application suites. That vulnerability is based on a previously reported vulnerability in the SafeNet Sentinel License Monitor service. An attacker could exploit this vulnerability to allow directory traversal on the host machine. ICONICS has validated the reported vulnerabilities and released a software update that addresses all identified vulnerabilities. ICS-CERT has verified that the update released by ICONICS fully addresses all reported vulnerabilities.

AFFECTED PRODUCTS The Integer overflows and Memory Corruption vulnerabilities affect ICONICS GENESIS32 and GENESIS64. Versions affected are: • GENESIS32 Version 9.21 and prior • GENESIS64 Version 10.51 and prior. Directory Traversal Vulnerability The directory traversal vulnerability affects all versions of GENESIS32 and GENESIS64 that utilize SafeNet Sentinel License Monitor service (Versions 7.0 through 7.4). The National Vulnerability Database (NVD) includes an unconfirmed report that versions prior to 7.0 may also be vulnerable.e According to ICONICS, vulnerable versions of the SafeNet service could exist in the following versions of the GENESIS application suite: • GENESIS32 and GENESIS 64 (Versions 8.05, 9.1, 9.2, and 10) IMPACT An attacker successfully exploiting these identified vulnerabilities could remotely execute arbitrary code, create data leakage, or initiate a denial of service (DoS). The actual impact to individual organizations depends on many factors that are unique to each organization. ICS-CERT recommends that organizations evaluate the impact of this vulnerability based on their environment, architecture, and product implementation.

Iconics Genesis 32 Keygen Download; Cod Mw3 Crack Only Download Couples; Flex Type Free Download Keygen. Minecraft Download Mac 1.7.3 Full Version. AlarmWorX™32 MMX. The services that ICONICS could provide would be more consistent and would best use the features available in the GENESIS32 product.

BACKGROUND ICONICS is a US based company that maintains offices in several countries around the world, including the US, UK, Netherlands, Italy, India, Germany, France, Czech Republic, China, and Australia. The affected products, GENESIS32 and GENESIS64, are web based HMI SCADA systems. According to ICONICS, GENESIS is deployed across several sectors including manufacturing, building automation, oil and gas, water and wastewater, electric utilities, and others. ICONICS estimates that 55% of GENESIS installations are in the United States, 45% are in Europe, and 5% are in Asia.

VULNERABILITY CHARACTERIZATION Vulnerability Overview The publicly disclosed vulnerabilities affect the GenBroker.exe on Port 38080/TCP, which is an OPC-based communications service. If exploited, this vulnerability provides access to a core application used to manage communications between clients and servers. This service is vulnerable to integer overflow and memory corruption conditions. All these vulnerabilities are potentially remotely exploitable.

Directory Traversal Vulnerability This vulnerability in the ICONICS GENESIS32 and GENESIS64 application suites affects the SafeNet Sentinel License Monitor service on Port 6002/TCP, through a previously reported vulnerability of that service. The ICONICS GENESIS32 and GENESIS64 application suites use this service as part of product licensing. An attacker could exploit this vulnerability to allow directory traversal on the host machine, potentially gaining additional privileges that could facilitate malicious acts against the vulnerable system. Integer Overflows and Memory Corruption Vulnerability Details Exploitability An attacker can remotely exploit all the identified vulnerabilities by sending specially crafted data to the vulnerable GenBroker.exe application.

An attacker could craft a malicious payload that could be remotely executed. Existence of Exploit PoC code is publicly available for all 13 reported vulnerabilities. Difficulty This vulnerability requires moderate skill to exploit. Directory Traversal Vulnerability Details Exploitability An attacker could remotely exploit this vulnerability by sending specially crafted data to the vulnerable SafeNet Sentinel License Monitor service on Port (6002/TCP). Existence of Exploit No publicly available exploit code is known to exist that specifically targets this vulnerability.

Difficulty This vulnerability requires moderate skill to exploit. MITIGATION ICONICS has addressed these vulnerabilities with a software update, which is available on the company’s website:. For additional product support, contact ICONICS by phone at (508) 543-8600 or by e-mail at In addition to software updating, ICS-CERT recommends the following mitigations: • Use a firewall to restrict unnecessary or unwanted traffic, specifically to the affected Ports 38080/TCP and 6002/TCP.

• If an intrusion detection system (IDS) is used, update to the latest IDS signatures. • Minimize exposure of vulnerable systems to external networks. If remote access is required, use secure methods such as Virtual Private Networks (VPNs). Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to ICS-CERT for tracking and correlation against other incidents. ICS-CERT reminds organizations to perform proper impact analysis and risk assessment prior to taking defensive measures. The Control System Security Program also provides a on the US-CERT website. Several recommended practices are available for reading or download, including.

• CWE-190: Integer Overflow, Common Weakness Enumeration,, accessed March 31, 2011. • CWE-415: Double-Free, Common Weakness Enumeration,, accessed March 31, 2011. • Joel Langill, Cyber Security to Protect Critical Infrastructure,, accessed April 13, 2011. • CVE-2007-6483 (under review), National Vulnerability Database,, accessed April 4, 2011.

• CVE-2007-6483 (under review), National Vulnerability Database,, accessed April 4, 2011. Contact Information For any questions related to this report, please contact the NCCIC at: Email: Toll Free: 1-888-282-0870 For industrial control systems cybersecurity information: or incident reporting: The NCCIC continuously strives to improve its products and services.

Nullsoft Sfx Installer Unpack. You can help by choosing one of the links below to provide feedback about this product.

What is GENESIS32™ GENESIS32™ is the industry’s first and only fully scalable suite of OPC, SNMP, BACnet and Web-enabled HMI and SCADA applications. The GENESIS32 Automation Suite is designed from the ground up to take advantage of the entire range of Microsoft Windows® operating systems, including Windows 7, providing reliable integration with the most popular communication infrastructures. It delivers unparalleled ease-of-use, performance and cost savings due to its open standards-based design.

GENESIS64 For 64-bit-based, multi-core, multi-processors applications that require advanced 3D Graphics and visualization, ICONICS offers GENESIS64. Taking advantage of 64-bit computing can greatly reduce engineering time, resulting in savings. GENESIS64 is the first and only HMI/SCADA software suite certified for both Microsoft Windows Vista, Windows Server 2008, and compatible with Windows 7. GENESIS64 ™ provides a complete 360 degree view of your operations in real-time.

GENESIS32 For 32-bit platforms, ICONICS is committed to providing product improvements and added functionality to the GENESIS32 suite of HMI/SCADA and advanced visualization solutions for many years to come. With GENESIS32 and GENESIS64, ICONICS connects your plant-level operations to the enterprise, turning your real-time data into competitive advantage. GENESIS32™ is the industry’s first and only fully scalable suite of OPC, SNMP, BACnet and Web-enabled HMI and SCADA applications. The GENESIS32 Automation Suite is designed from the ground up to take advantage of the entire range of Microsoft Windows® operating systems, including Windows 7, providing reliable integration with the most popular communication infrastructures.

It delivers unparalleled ease-of-use, performance and cost savings due to its open standards-based design. The products listed below are components of the GENESIS32 Automation Suite: and - Multimedia OPC Alarm Management Software - OPC Data Aggregation, Bridging, Redundancy and Tunneling - Dazzling Animated Graphics for your HMI - Creation and Management of Visual Basic for Applications (VBA) 6.0 scripts - User and Group-level Security - Calendar-based Scheduling Tool - Enterprise-wide data collection, logging, charting, reporting and analysis system - Historical Plant and Business Data Replay - Web-based Real-time Automation Software.