Untrusted search path vulnerability in Invensys Wonderware InTouch 2012 and earlier, as used in Wonderware Application Server, Wonderware Information Server, Foxboro Control Software, InFusion CE/FE/SCADA, InBatch, and Wonderware Historian, allows local users to gain privileges via a Trojan horse DLL in an unspecified directory. Per: http://cwe.mitre.org/data/definitions/426.html
'CWE-426: Untrusted Search Path'
Publication date: Thu, 26 Jul 2012 15:41:00 +0000