A key component in any control system security program is a complete analysis of all client-side applications covering not only the base operating system, but also the often necessary add-ons. Security vulnerability management firm Secunia just announced the availability of security "factsheets". Click here to read the press release, or click here to go directly to the factsheet site.
As always, it is important to address all client-side applications that exist on any control system node (server, HMI, historian, application/batch, etc.) and make sure that they are properly patched. This requires a conscience look at how to manage updates outside the traditional "Windows Update" or WSUS arena.