CVE-2012-0228

Name of the Vulnerable Software and Affected Versions Invensys Wonderware Information Server versions 4.0 SP1 through 4.5

Description The issue is related to the improper implementation of client controls, allowing remote attackers to bypass intended access restrictions. The exact vectors used for the bypass are not specified.

Recommendations For versions 4.0 SP1 through 4.5, consider restricting access to sensitive areas of the server to minimize the risk of exploitation until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.