Lucene search
HistoryOct 03, 2013 - 11:55 p.m.
CVE-2013-3248
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
High
EPSS
0.005
Percentile
77.6%
Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .pdf or .xps file.
Affected configurations
Node
corelpdf_fusionMatch1.11
| Vendor | Product | Version | CPE |
|---|---|---|---|
| corel | pdf_fusion | 1.11 | cpe:2.3:a:corel:pdf_fusion:1.11:*:*:*:*:*:*:* |
Related
saint
saint
Corel PDF Fusion XPS File ZIP Directory Vulnerability
2013-08-08 00:00:00
Corel PDF Fusion XPS File ZIP Directory Vulnerability
2013-08-08 00:00:00
Corel PDF Fusion XPS File ZIP Directory Vulnerability
2013-08-08 00:00:00
checkpoint_advisories
checkpoint_advisories
Corel PDF Fusion XPS Stack Buffer Overflow (CVE-2013-3248)
2013-11-04 00:00:00
prion
prion
Design/Logic Flaw
2013-10-03 23:55:00
metasploit
metasploit
Corel PDF Fusion Stack Buffer Overflow
2013-07-11 17:30:08
cve
cve
CVE-2013-3248
2013-10-03 23:55:04
cvelist
cvelist
CVE-2013-3248
2013-10-03 23:00:00
packetstorm
packetstorm
Corel PDF Fusion Stack Buffer Overflow
2013-07-12 00:00:00
zdt
zdt
Corel PDF Fusion Stack Buffer Overflow Vulnerability
2013-07-12 00:00:00
exploitdb
exploitdb
Corel PDF Fusion - Local Stack Buffer Overflow (Metasploit)
2013-07-13 00:00:00
openvas
openvas
Corel PDF Fusion 1.11 Multiple Vulnerabilities - Windows
2013-10-15 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
High
EPSS
0.005
Percentile
77.6%
Related for NVD:CVE-2013-3248