CVE-2012-1824

Published: May 25, 2012Modified: Apr 29, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Untrusted search path vulnerability in Measuresoft ScadaPro Client before 4.0.0 and ScadaPro Server before 4.0.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Affected (2)

Products: Measuresoft: Scadapro Client, Scadapro Server

Measuresoft

2 products

Scadapro Client

Scadapro Server

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Measuresoft Scadapro Client	Up to 3.3.1
Measuresoft Scadapro Server	Up to 3.3.1

References (6)

http://www.measuresoft.net/downloads/Measuresoft%20SCADA%204.4.6/issue_disks/Client/DOCUMENTATION/ReleaseNotes.doc

Source: cret@cert.org

http://www.measuresoft.net/downloads/Measuresoft%20SCADA%204.4.6/issue_disks/Server/DOCUMENTATION/ReleaseNotes.doc

Source: cret@cert.org

http://www.us-cert.gov/control_systems/pdf/ICSA-12-145-01.pdf

Source: cret@cert.org

US Government Resource

http://www.measuresoft.net/downloads/Measuresoft%20SCADA%204.4.6/issue_disks/Client/DOCUMENTATION/ReleaseNotes.doc

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.measuresoft.net/downloads/Measuresoft%20SCADA%204.4.6/issue_disks/Server/DOCUMENTATION/ReleaseNotes.doc

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.us-cert.gov/control_systems/pdf/ICSA-12-145-01.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

Timeline

No history available yet.