Researchers from Core Security have uncovered a vulnerability in a DLL used by several Corel applications. Researchers revealed the vulnerability after they repeatedly tried to communicate with Correl who did not respond. So there are no updates available about vulnerabilities that can allow remote code execution.
Η Corel is a well-known graphics software company for design and video applications. Its applications are well-known: CoreLRAW, Photo-Paint, and Core security researchers have discovered that many of them contain a DLL containing the vulnerability.
"When a Correl file is opened, the directory of that file is used to locate the DLL files, which could allow an attacker to execute arbitrary commands by inserting a malicious DLL into the same directory as the file," they said. researchers.
Corel applications that can be affected are: CorelDRAW X7, Corel Photo-Paint X7, Corel PaintShop Pro X7, Corel Painter 2015, Corel CAD 2014, Corel VideoStudio PRO X7, Corel PDF Fusion and Corel FastFlick. The DLL that the applications look for is called "wintab32.dll" and does not control the storage path. This allows a malicious DLL with the same name to be copied to the relevant folder and executed within the application.
Core Security researchers contacted Corel for vulnerabilities in December 9 and received no response. They tried again, on December 17, and they still did not get an answer. They made a third attempt to communicate with Corel via Twitter without success, so they released vulnerability today.