CVE-2012-3005 Information

Description

Untrusted search path vulnerability in Invensys Wonderware InTouch 2012 and earlier as used in Wonderware Application Server Wonderware Information Server Foxboro Control Software InFusion CE/FE/SCADA InBatch and Wonderware Historian allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.

Reference

http://www.us-cert.gov/control_systems/pdf/ICSA-12-177-02.pdf