exploitDog

CVE-2014-8396

Опубликовано: 15 янв. 2015

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Untrusted search path vulnerability in Corel PDF Fusion allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse quserex.dll file that is located in the same folder as the file being processed.

Комментарий

CWE-426: Untrusted Search Path

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:corel:pdf_fusion:*:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.07891

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-c976-c57v-wjwr

github

больше 3 лет назад

Untrusted search path vulnerability in Corel PDF Fusion allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse quserex.dll file that is located in the same folder as the file being processed.

EPSS

Процентиль: 92%

0.07891

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other