Untrusted Search Path Vulnerability in Corel PDF Fusion Allows Arbitrary Code Execution and DLL Hijacking

Untrusted Search Path Vulnerability in Corel PDF Fusion Allows Arbitrary Code Execution and DLL Hijacking

CVE-2014-8396 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Untrusted search path vulnerability in Corel PDF Fusion allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse quserex.dll file that is located in the same folder as the file being processed.

Learn more about our User Device Pen Test.