Out-of-Bound Write Vulnerability in CorelDRAW X8 EMF Parsing Functionality

Out-of-Bound Write Vulnerability in CorelDRAW X8 EMF Parsing Functionality

CVE-2016-9043 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

An out of bound write vulnerability exists in the EMF parsing functionality of CorelDRAW X8 (CdrGfx - Corel Graphics Engine (64-Bit) - 18.1.0.661). A specially crafted EMF file can cause a vulnerability resulting in potential code execution. An attacker can send the victim a specific EMF file to trigger this vulnerability.

Learn more about our Web Application Penetration Testing UK.