Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2014-8396
HistoryJan 15, 2015 - 3:59 p.m.

CVE-2014-8396

2015-01-1515:59:11
[email protected]
web.nvd.nist.gov
2

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

High

0.975 High

EPSS

Percentile

100.0%

JSON

Untrusted search path vulnerability in Corel PDF Fusion allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse quserex.dll file that is located in the same folder as the file being processed.

Affected configurations

NVD
Node
corelpdf_fusion

Related

prion 1
cvelist 1
cve 1
openvas 1
packetstorm 1
securityvulns 2
coresecurity 1
prion
prion
Design/Logic Flaw
2015-01-15 15:59:00
cvelist
cvelist
CVE-2014-8396
2015-01-15 15:00:00
cve
cve
CVE-2014-8396
2015-01-15 15:59:11
openvas
openvas
Corel PDF Fusion <= 1.14 Arbitrary Code Execution Vulnerability - Windows
2015-07-07 00:00:00
packetstorm
packetstorm
Corel Software DLL Hijacking
2015-01-13 00:00:00
securityvulns
securityvulns
Corel multiple appliucations unsafe DLL search path
2015-01-13 00:00:00
Corel Software DLL Hijacking
2015-01-13 00:00:00
coresecurity
coresecurity
Corel Software DLL Hijacking
2015-01-12 00:00:00

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

High

0.975 High

EPSS

Percentile

100.0%

JSON
Related for NVD:CVE-2014-8396
prion1cvelist1cve1openvas1packetstorm1securityvulns2coresecurity1