Vulnerability in Corel Pdf_fusion
CVE-2014-8396
Untrusted search path vulnerability in Corel PDF Fusion allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse quserex.dll file that is located in the same folder as the file being processed.
EPSS: 0.079 (92.2th percentile) — read the EPSS interpretation.
Affected products
- Corel Pdf_fusion
- N/a — versions n/a
References
- 72007 (vdb-entry, x_refsource_BID)
- 20150112 Corel Software DLL Hijacking (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (x_refsource_MISC)
- 20150112 Corel Software DLL Hijacking (mailing-list, x_refsource_FULLDISC)