The NCCIC has released an advisory on an authentication bypass by capture-replay vulnerability in Telecrane F25 series. All versions prior to 00.0A are affected. Successful exploitation of this vulnerability could allow unauthorized users to view commands, replay commands, control the device, or stop the device from running. Telecrane recommends upgrading to the latest firmware. The NCCIC also recommends a series of defensive measures to minimize the risk of exploitation of these vulnerabilities. NCCIC/ICS-CERT.
H2Oex: In Person 1 day event/exercise. Thurs Dec 5th. Washington DC. Join us!