Ah, the HMI and other wonderful pieces of [REDACTED], er, software. Wesley McGrew is presenting today his talk which delves into a vulnerability with GE Fanuc’s iFIX product.
From McGrew Security Blog:
The specific examples discussed in these slides and my talk are problems with the architecture (and password storage!) of GE Fanuc’s iFIX. The above-described vulnerabilities were discovered on version 4.5, but are also present in the recently released 5.0 (older versions almost certainly have the same problem). They were reported to US-CERT (VU# 310355) and the vendor about six months ago, and this represents the first public disclosure of the problems, though they are basic/fundamental enough that any security geek would spot them pretty quickly upon taking a look at this product.
For a copy of his slide deck click here (.PDF) (local archive 3+ MB) UPDATE: Due to a very polite request from GE Fanuc we have elected to take down our local copy of the presentation. Sorry folks.
If you are at the SANS SCADA Summit be sure to check out Wesley’s talk.
Article Link (thx to Peter G for the link)