Filtered by vendor Corel
Subscribe
Total
54 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-8393 | 1 Corel | 5 Coreldraw, Coreldraw Photo Paint, Paint Shop Pro and 2 more | 2018-10-09 | 4.6 MEDIUM | 7.8 HIGH |
| DLL Hijacking vulnerability in CorelDRAW X7, Corel Photo-Paint X7, Corel PaintShop Pro X7, Corel Painter 2015, and Corel PDF Fusion. | |||||
| CVE-2007-2366 | 1 Corel | 1 Paint Shop Pro | 2017-10-11 | 7.4 HIGH | N/A |
| Buffer overflow in Corel Paint Shop Pro 11.20 allows user-assisted remote attackers to execute arbitrary code via a crafted .PNG file. | |||||
| CVE-2007-2209 | 2 Accusoft, Corel | 2 Imagegear, Paint Shop Pro | 2017-10-11 | 6.8 MEDIUM | N/A |
| Buffer overflow in igcore15d.dll 15.1.2.0 and 15.2.0.0 for AccuSoft ImageGear, as used in Corel Paint Shop Pro Photo 11.20 and possibly other products, allows user-assisted remote attackers to execute arbitrary code via a crafted .CLP file. NOTE: some details were obtained from third party sources. | |||||
| CVE-2012-4728 | 1 Corel | 1 Quattro Pro X6 | 2017-08-29 | 4.3 MEDIUM | N/A |
| The (1) QProGetNotebookWindowHandle and (2) Ordinal132 functions in QPW160.dll in Corel Quattro Pro X6 Standard Edition 16.0.0.388 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted QPW file. | |||||
| CVE-2009-4251 | 1 Corel | 1 Paint Shop Pro | 2017-08-17 | 9.3 HIGH | N/A |
| Stack-based buffer overflow in Jasc Paint Shop Pro 8.10 (aka Corel Paint Shop Pro) allows user-assisted remote attackers to execute arbitrary code via a crafted PNG file. NOTE: this might be the same issue as CVE-2007-2366. | |||||
| CVE-2007-2921 | 1 Corel | 1 Activecgm Browser | 2017-07-29 | 9.3 HIGH | N/A |
| Multiple buffer overflows in acgm.dll in the Corel / Micrografx ActiveCGM Browser ActiveX control before 7.1.4.19 allow remote attackers to execute arbitrary code via unspecified vectors. | |||||
| CVE-2015-6948 | 1 Corel | 1 Wordperfect | 2016-12-22 | 6.8 MEDIUM | N/A |
| Heap-based buffer overflow in the Microsoft Word document conversion feature in Corel WordPerfect allows remote attackers to execute arbitrary code via a crafted document. | |||||
| CVE-1999-1173 | 1 Corel | 1 Wordperfect | 2016-10-18 | 2.1 LOW | N/A |
| Corel Word Perfect 8 for Linux creates a temporary working directory with world-writable permissions, which allows local users to (1) modify Word Perfect behavior by modifying files in the working directory, or (2) modify files of other users via a symlink attack. | |||||
| CVE-2013-0742 | 1 Corel | 1 Pdf Fusion | 2013-10-07 | 9.3 HIGH | N/A |
| Stack-based buffer overflow in Corel PDF Fusion 1.11 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long ZIP directory entry name in an XPS file. | |||||
| CVE-2013-3248 | 1 Corel | 1 Pdf Fusion | 2013-10-04 | 9.3 HIGH | N/A |
| Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .pdf or .xps file. | |||||
| CVE-2010-5240 | 1 Corel | 2 Coreldraw X5, Photo-paint X3 | 2012-09-07 | 6.9 MEDIUM | N/A |
| Multiple untrusted search path vulnerabilities in Corel PHOTO-PAINT and CorelDRAW X5 15.1.0.588 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) CrlRib.dll file in the current working directory, as demonstrated by a directory that contains a .cdr, .cpt, .cmx, or .csl file. NOTE: some of these details are obtained from third party information. | |||||
| CVE-2000-0195 | 1 Corel | 1 Linux | 2008-09-10 | 7.2 HIGH | N/A |
| setxconf in Corel Linux allows local users to gain root access via the -T parameter, which executes the user's .xserverrc file. | |||||
| CVE-2000-0194 | 1 Corel | 1 Linux | 2008-09-10 | 7.2 HIGH | N/A |
| buildxconf in Corel Linux allows local users to modify or create arbitrary files via the -x or -f parameters. | |||||
| CVE-2000-0048 | 1 Corel | 1 Linux | 2008-09-10 | 7.2 HIGH | N/A |
| get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program. | |||||