Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveFlexeraCVE-2013-3248
HistoryOct 03, 2013 - 11:55 p.m.

CVE-2013-3248

2013-10-0323:55:04
flexera
web.nvd.nist.gov
98
cve-2013-3248
untrusted search path vulnerability
corel pdf fusion
local users
privilege escalation

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.005

Percentile

77.6%

JSON

Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .pdf or .xps file.

Affected configurations

Nvd
Node
corelpdf_fusionMatch1.11
VendorProductVersionCPE
corelpdf_fusion1.11cpe:2.3:a:corel:pdf_fusion:1.11:*:*:*:*:*:*:*

Related

saint 4
checkpoint_advisories 1
nvd 1
metasploit 1
cvelist 1
packetstorm 1
zdt 1
prion 1
openvas 1
exploitdb 1
saint
saint
Corel PDF Fusion XPS File ZIP Directory Vulnerability
2013-08-08 00:00:00
Corel PDF Fusion XPS File ZIP Directory Vulnerability
2013-08-08 00:00:00
Corel PDF Fusion XPS File ZIP Directory Vulnerability
2013-08-08 00:00:00
checkpoint_advisories
checkpoint_advisories
Corel PDF Fusion XPS Stack Buffer Overflow (CVE-2013-3248)
2013-11-04 00:00:00
nvd
nvd
CVE-2013-3248
2013-10-03 23:55:04
metasploit
metasploit
Corel PDF Fusion Stack Buffer Overflow
2013-07-11 17:30:08
cvelist
cvelist
CVE-2013-3248
2013-10-03 23:00:00
packetstorm
packetstorm
Corel PDF Fusion Stack Buffer Overflow
2013-07-12 00:00:00
zdt
zdt
Corel PDF Fusion Stack Buffer Overflow Vulnerability
2013-07-12 00:00:00
prion
prion
Design/Logic Flaw
2013-10-03 23:55:00
openvas
openvas
Corel PDF Fusion 1.11 Multiple Vulnerabilities - Windows
2013-10-15 00:00:00
exploitdb
exploitdb
Corel PDF Fusion - Local Stack Buffer Overflow (Metasploit)
2013-07-13 00:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.005

Percentile

77.6%

JSON
Related for CVE-2013-3248
saint4checkpoint_advisories1nvd1metasploit1cvelist1packetstorm1zdt1prion1openvas1exploitdb1