Vulnerability in Corel Painter
CVE-2014-8395
Untrusted search path vulnerability in Corel Painter 2015 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wacommt.dll file that is located in the same folder as the file being processed.
EPSS: 0.079 (92.2th percentile) — read the EPSS interpretation.
Affected products
- Corel Painter — versions 2015
- N/a — versions n/a
References
- 20150112 Corel Software DLL Hijacking (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (x_refsource_MISC)
- 20150112 Corel Software DLL Hijacking (mailing-list, x_refsource_FULLDISC)
- 72006 (vdb-entry, x_refsource_BID)