So my impression is that the script isn't targeting specific apps but ASP-based servers and trying to do generic SQL-injection?

The question is, can people identify which apps have been exploited by the attack vector?

If the mainstream lighting industry won't make them available, there are other industries where you can get high intensity LED lighting. I have a few of these in my living room, connected to my computer and with a DMX interface I can dial up virtually any color I want. It's awesome.