Lucene search
K

5 matches found

Cvelist
Cvelist
added 2015/01/15 3:0 p.m.24 views

CVE-2014-8397

Untrusted search path vulnerability in Corel VideoStudio PRO X7 or FastFlick allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse u32ZLib.dll file that is located in the same folder as the file being processed...

7.7AI score0.0707EPSS
Exploits1References4
CVE
CVE
added 2015/01/15 3:0 p.m.48 views

CVE-2014-8397

CVE-2014-8397 is part of Corel Software DLL Hijacking, affecting Corel VideoStudio PRO X7 and Corel FastFlick (and related Corel packages listed in Core Security advisory CORE-2015-0001). The issue is an Untrusted Search Path vulnerability where the application loads a malicious DLL from the same...

4.6CVSS7.7AI score0.0707EPSS
Exploits1References4Affected Software2
CNVD
CNVD
added 2015/01/14 12:0 a.m.12 views

VideoStudio Pro X7 'u32ZLib.dll' DLL Loading Arbitrary Code Execution Vulnerability

VideoStudio Pro X7 is a video editing software. An arbitrary code execution vulnerability exists in VideoStudio Pro X7 'u32ZLib.dll' DLL loading due to VideoStudio Pro X7 failing to properly load the "u32ZLib.dll" file. This allows an attacker to construct a malicious DLL file to load arbitrary...

4.6CVSS7.8AI score0.0707EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2015/01/13 10:43 p.m.17 views

Corel Software DLL Hijacking Vulnerability Allows Hackers to Execute Malicious Code

Security researchers have disclosed local zero day DLL hijacking vulnerabilities in several applications developed by Corel Software that could allow an attacker to execute arbitrary commands on victims' computer, potentially affecting more than 100 million users. The security holes were publicly...

7.6AI score
Exploits0
securityvulns
securityvulns
added 2015/01/13 12:0 a.m.54 views

Corel Software DLL Hijacking

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Corel Software DLL Hijacking 1. Advisory Information Title: Corel Software DLL Hijacking Advisory ID: CORE-2015-0001 Advisory URL: http://www.coresecurity.com/advisories/corel-software-dll-hijacking Date published: 2015-01-12 Dat...

4.6CVSS0.1AI score0.08342EPSS
Exploits1
Rows per page
Query Builder