Vulnerabilities > Corel > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-24 | CVE-2016-9043 | Out-of-bounds Write vulnerability in Corel Coreldraw X8 An out of bound write vulnerability exists in the EMF parsing functionality of CorelDRAW X8 (CdrGfx - Corel Graphics Engine (64-Bit) - 18.1.0.661). | 7.8 |
| 2018-04-24 | CVE-2016-8730 | Out-of-bounds Write vulnerability in Corel Coreldraw Photo Paint X8 18.1.0.661 An of bound write / memory corruption vulnerability exists in the GIF parsing functionality of Core PHOTO-PAINT X8 18.1.0.661. | 7.8 |
| 2009-07-21 | CVE-2009-2564 | Permissions, Privileges, and Access Controls vulnerability in multiple products NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager before 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which allows local users to gain SYSTEM privileges by replacing getPlus_HelperSvc.exe with a Trojan horse program, as demonstrated by use of getPlus Download Manager within Adobe Reader. | 7.2 |
| 2007-04-30 | CVE-2007-2366 | Remote Buffer Overflow vulnerability in Corel Paint Shop PRO 11.20 Buffer overflow in Corel Paint Shop Pro 11.20 allows user-assisted remote attackers to execute arbitrary code via a crafted .PNG file. | 7.4 |
| 2000-02-24 | CVE-2000-0195 | Unspecified vulnerability in Corel Linux 1.0 setxconf in Corel Linux allows local users to gain root access via the -T parameter, which executes the user's .xserverrc file. | 7.2 |
| 2000-02-24 | CVE-2000-0194 | Unspecified vulnerability in Corel Linux 1.0 buildxconf in Corel Linux allows local users to modify or create arbitrary files via the -x or -f parameters. | 7.2 |
| 2000-01-12 | CVE-2000-0048 | Unspecified vulnerability in Corel Linux 1.0 get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program. | 7.2 |