Corel

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2013-3248 1Corel 1Pdf Fusion Apr 29, 2026 Oct 3, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .pd...Show more Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .pdf or .xps file.Show less
CVE-2013-0742 1Corel 1Pdf Fusion Apr 29, 2026 Oct 3, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 Stack-based buffer overflow in Corel PDF Fusion 1.11 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long ZIP directory entry name in an XPS file.
CVE-2010-5240 1Corel 2Coreldraw X5 Photo Paint X3 Apr 29, 2026 Sep 7, 2012 N/A· v4 N/A· v3 6.9 MEDIUM· v2 Multiple untrusted search path vulnerabilities in Corel PHOTO-PAINT and CorelDRAW X5 15.1.0.588 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) CrlRib.dll file in the current working directo...Show more Multiple untrusted search path vulnerabilities in Corel PHOTO-PAINT and CorelDRAW X5 15.1.0.588 allow local users to gain privileges via a Trojan horse (1) dwmapi.dll or (2) CrlRib.dll file in the current working directory, as demonstrated by a directory that contains a .cdr, .cpt, .cmx, or .csl file. NOTE: some of these details are obtained from third party information.Show less
CVE-2009-4251 1Corel 1Paint Shop Pro Apr 23, 2026 Dec 10, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Stack-based buffer overflow in Jasc Paint Shop Pro 8.10 (aka Corel Paint Shop Pro) allows user-assisted remote attackers to execute arbitrary code via a crafted PNG file. NOTE: this might be the same issue as CVE-2007-2...Show more Stack-based buffer overflow in Jasc Paint Shop Pro 8.10 (aka Corel Paint Shop Pro) allows user-assisted remote attackers to execute arbitrary code via a crafted PNG file. NOTE: this might be the same issue as CVE-2007-2366.Show less
CVE-2009-2564 3Adobe CorelNos Microsystems 3Acrobat Reader Getplus Download ManagerGetplus Download Manager Apr 23, 2026 Jul 21, 2009 N/A· v4 N/A· v3 7.2 HIGH· v2 NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager before 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe...Show more NOS Microsystems getPlus Download Manager, as used in Adobe Reader 1.6.2.36 and possibly other versions, Corel getPlus Download Manager before 1.5.0.48, and possibly other products, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which allows local users to gain SYSTEM privileges by replacing getPlus_HelperSvc.exe with a Trojan horse program, as demonstrated by use of getPlus Download Manager within Adobe Reader. NOTE: within Adobe Reader, the scope of this issue is limited because the program is deleted and the associated service is not automatically launched after a successful installation and reboot.Show less
CVE-2007-2921 1Corel 1Activecgm Browser Apr 23, 2026 Jun 14, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Multiple buffer overflows in acgm.dll in the Corel / Micrografx ActiveCGM Browser ActiveX control before 7.1.4.19 allow remote attackers to execute arbitrary code via unspecified vectors.
CVE-2007-2366 1Corel 1Paint Shop Pro Apr 23, 2026 Apr 30, 2007 N/A· v4 N/A· v3 7.4 HIGH· v2 Buffer overflow in Corel Paint Shop Pro 11.20 allows user-assisted remote attackers to execute arbitrary code via a crafted .PNG file.
CVE-2007-2209 2Accusoft Corel 2Imagegear Paint Shop Pro Apr 23, 2026 Apr 24, 2007 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Buffer overflow in igcore15d.dll 15.1.2.0 and 15.2.0.0 for AccuSoft ImageGear, as used in Corel Paint Shop Pro Photo 11.20 and possibly other products, allows user-assisted remote attackers to execute arbitrary code via...Show more Buffer overflow in igcore15d.dll 15.1.2.0 and 15.2.0.0 for AccuSoft ImageGear, as used in Corel Paint Shop Pro Photo 11.20 and possibly other products, allows user-assisted remote attackers to execute arbitrary code via a crafted .CLP file. NOTE: some details were obtained from third party sources.Show less
CVE-2007-1735 1Corel 1Wordperfect Apr 23, 2026 Mar 28, 2007 N/A· v4 N/A· v3 9.3 HIGH· v2 Stack-based buffer overflow in Corel WordPerfect Office X3 (13.0.0.565) allows user-assisted remote attackers to execute arbitrary code via a long printer selection (PRS) name in a Wordperfect document.
CVE-2000-0193 1Corel 1Linux Apr 16, 2026 Mar 2, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 The default configuration of Dosemu in Corel Linux 1.0 allows local users to execute the system.com program and gain privileges.
CVE-2000-0195 1Corel 1Linux Apr 16, 2026 Feb 24, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 setxconf in Corel Linux allows local users to gain root access via the -T parameter, which executes the user's .xserverrc file.
CVE-2000-0194 1Corel 1Linux Apr 16, 2026 Feb 24, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 buildxconf in Corel Linux allows local users to modify or create arbitrary files via the -x or -f parameters.
CVE-2000-0048 1Corel 1Linux Apr 16, 2026 Jan 12, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 get_it program in Corel Linux Update allows local users to gain root access by specifying an alternate PATH for the cp program.
CVE-1999-1173 1Corel 1Wordperfect Apr 16, 2026 Dec 18, 1998 N/A· v4 N/A· v3 2.1 LOW· v2 Corel Word Perfect 8 for Linux creates a temporary working directory with world-writable permissions, which allows local users to (1) modify Word Perfect behavior by modifying files in the working directory, or (2) modif...Show more Corel Word Perfect 8 for Linux creates a temporary working directory with world-writable permissions, which allows local users to (1) modify Word Perfect behavior by modifying files in the working directory, or (2) modify files of other users via a symlink attack.Show less

Previous 1 23