A new page has been added to the InduSoft Web Studio website! Now InduSoft users, OEMs and system integrators can get easy access to security updates and hotfixes for this popular SCADA software. We’ve added three new hotfixes, two of which are critical.
NTWebServer Directory Traversal – This hotfix addresses a security issue within the NTWebServer. This web server is intended for testing purposes only, so applications in the field should not have an issue with security from this. All live applications should be using the IIS or Apache instead of NTWebServer. The hotfix to patch the NTWebserver is available on the Security Updates and Hotfixes page for InduSoft Web Studio v7.0 P1, and version 6.1 by request.
New button causes long screen load time on Thin Clients – This issue is resolved with hotfix 70.0.01.04.1899. This hotfix will correct this issue to improve screen load times when new buttons are created. This patch is moderate, and intended for IWS v7.0 P1.
ISSymbol Virtual Machine buffer overflow – This patch corrects the ISSymbol virtual machine buffer overflow vulnerability. This is an important hotfix, and will be included with the InduSoft Web Studio v7.0+SP1 when it is available for download.