ICS-CERT has released an advisory on an Eaton ELCSoft vulnerability. ELCSoft versions 2.04.02 and prior are affected. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. Eaton has released new firmware for ELCSoft. ICS-CERT also recommends a series of defensive measures to minimize the risk of exploitation of this vulnerability. ICS-CERT.