Product Security Update - Microsoft Remote Desktop Protocol Vulnerability

Product Security Update

CVE-2019-0708 Remote Desktop Protocol Vulnerability (Bluekeep)

July 11, 2019

Background

On May 15, 2019, Microsoft released a patch for a critical Remote Code Execution vulnerability in Remote Desktop Services (CVE-2019-0708). This vulnerability can be exploited remotely without authentication on systems that use Remote Desktop Services for Windows XP, Windows 7, Windows Server 2003 and Windows Server 2008 operating systems.

Response

Beckman Coulter Life Sciences research and development teams are validating the installation of the Microsoft patch for CVE-2019-0708 and where appropriate, have developed specific customer instructions for those systems. For detailed information on each Beckman Coulter Life Sciences product, please see below:

Cell Viability

Product Instructions or Recommendations
Vi-CELL Beckman Coulter Life Sciences recommends isolating or utilizing a closed network for this product.
Vi-CELL BLU Microsoft patch is not applicable. These systems run a version of Windows that is not vulnerable.
Vi-CELL MetaFLEX This product contains technologies to actively prevent malware intrusion. No patch is required at this time.
Vi-CELL XR Validation efforts are in process. Please check back later for updated information.

 

Centrifuge

Product Instructions or Recommendations
Optima MAX-XP/MAX-TL Microsoft patch is not applicable. These systems run a version of Windows that is not vulnerable.
Avanti JXN, Optima L-XP, Optima XE and XPN This product contains technologies to actively prevent malware intrusion. No patch is required at this time.
Airfuge, Allegra X-12/14/15, Allegra X-30, Avanti J-26/30/HC, Avanti J-E, Avanti J6-MI, Microfuge 16, Microfuge 20, Mobilefuge, Optima AUC, Optima L/XL This product does not use or rely upon a Microsoft Windows-based operating system. It uses an embedded control system that is not vulnerable to or affected by the vulnerability.
Optima XLA/XLI, SpinTrace Validation efforts are in process. Please check back later for updated information.

 

Cytometry

Product Instructions or Recommendations
CyAn, FC500 MPL, FP1000 Beckman Coulter Life Sciences recommends isolating or utilizing a closed network for this product.
DI Data Innovations has validated the patch. Use Windows Update to install the patch on your system in accordance with the product's manual.
CytoFLEX, DxFLEX For systems operating with Windows 7, security patch KB4499175 has been validated and should be installed. For systems operating with more recent versions of Windows, no patch is required.
FC500 MCL For systems using Windows 2000, the Microsoft patch and PROService are not available. Please isolate instrument from the network or contact sales or service for a Windows 7 upgrade package.
For systems using Windows 7, McAfee CXP Cybersecurity software upgrade kit (PN 393695) is available and mitigates the vulnerability. If you have already received the disks, please be sure that you have followed the included instructions to install the software.
AQUIOS, Astrios, Gallios, MoFlo XDP, Navios/Navios EX Validation efforts are in process. Please check back later for updated information.

 

Lab Automation

Product Instructions or Recommendations
Biomek 3000, Biomek 4000, Biomek FX/FXp, Biomek NX/NXp Install Patch, Beckman Coulter evaluated and validated the following security patches for installation and use in Biomek 3000/4000, FX/FXP, NX/NXP systems.
For systems operating with Windows XP, confirm that Service Pack 3 patch ID KB 936929 has been installed or install as precursor to the installation of security patch ID KB4500331.
For systems operating with Windows 7, security patch KB4499175 has been validated and should be installed.
Biomek i-Series Microsoft patch is not applicable. These systems run a version of Windows that is not vulnerable.
EDC Gen4+, EDC Gen 5 The patch has been validated. Installation instructions can be found in service bulletin 51454, available from the EDC Biosystems web site.
EDC Tube Dowser This product does not use or rely upon a Microsoft Windows-based operating system. It uses an embedded control system that is not vulnerable to or affected by the vulnerability.
Labcyte Access, Labcyte Echo 5XX, Labcyte Echo 65X Validation efforts are in process. Please check back later for updated information.

 

Particle Characterization

Product Instructions or Recommendations
DelsaNano, MS3 Beckman Coulter Life Sciences recommends isolating or utilizing a closed network for this product.
LS 13320 XR Microsoft patch is not applicable. These systems run a version of Windows that is not vulnerable.
Z Series This product does not use or rely upon a Microsoft Windows-based operating system. It uses an embedded control system that is not vulnerable to or affected by the vulnerability.
DelsaMax, LS 13320, Multisizer 4e Validation efforts are in process. Please check back later for updated information.

 

Particle Counting

Product Instructions or Recommendations
2000, 9703, 2100/2200, 237A/B, 2400 series, 6000/7000 series, 8000A, 8011/8012/8103, 9703+, A1000, A643, Glycount, HHPC-6, HHPC+, PODS, PODS, R4800, R4900, ROC, TOC600, UP100, 3400, HIAC 8011+, PAT700, PODS+, QII Max, QIII Ultra Microsoft patch is not applicable for the instrument. These systems do not use a Windows operating system. Any customer-supplied PC connected to the instrument should be evaluated by the customer's IT department.
HIAC 8011, MET ONE 6000/7000 This product does not use or rely upon a Microsoft Windows-based operating system. It uses an embedded control system that is not vulnerable to or affected by the vulnerability.