Number: AV16-114
Date: 15 July 2016
Purpose
The purpose of this advisory is to bring attention to a software update for the Xper-IM Connect system by Philips.
Assessment
Philips released a software update for the Xper-IM Connect system to address multiple vulnerabilities (critical to high). Successful exploitation of these vulnerabilities may allow a remote attacker to compromise the Xper-IM Connect system. These vulnerabilities may include, but are not limited to, arbitrary code execution, code injection and information disclosure.
Affected versions:
Xper-IM Connect systems on Windows XP versions 1.5.12 and prior
Suggested Action
CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly. For more information, please refer to the ICS-CERT reference.
References: