Corel Software Dll Hijacking Vulnerability Allows Hackers To Execute Malicious Code

Security researchers accept disclosed local nix 24-hour interval DLL hijacking vulnerabilities inward several applications developed past times Corel Software that could let an assaulter to execute arbitrary commands on victims' computer, potentially affecting to a greater extent than than 100 ane 1000 one thousand users.

The safety holes were publicly disclosed past times Marcos Accossatto from a vulnerability question trouble solid Core Security afterwards the vendor didn’t reply to his mortal disclosure nigh the flaws.

Corel develops broad make of products including graphics, photo, video in addition to other media editing programs. According to the researcher, when a media file associated amongst ane of the vulnerable Corel products is opened, the production too loads a specifically named DLL (Dynamic Link Library) file into retention if it's located inward the same directory every bit the opened media file.

These DLL files incorporate executable code which could let an assaulter to install malware on victims' computers past times inserting malicious DLLs into the same directory every bit the document.

"Given that this is a client-side vulnerability, affected users should avoid opening untrusted files whose extensions are associated amongst Corel software in addition to incorporate whatever of the [affected] DLL files," Accossatto said inward an advisory.

"When a file associated amongst the Corel software is opened, the directory of that document is offset used to locate DLLs, which could let an assaulter to execute arbitrary commands past times inserting malicious DLLs into the same directory every bit the document."

VULNERABLE COREL PRODUCTS
At to the lowest degree 8 Corel products are all affected past times the vulnerabilities including:

• CorelDRAW X7
• Corel Photo-Paint X7
• Corel PaintShop Pro X7
• CorelCAD 2014
• Corel Painter 2015
• Corel PDF Fusion
• Corel VideoStudio PRO X7
• Corel FastFlick

Corel was warned of the vulnerabilities inward its products on Dec 9, 2014, followed past times roughly other e-mail on Dec 17, 2014 amongst a asking to confirm receiving the previous message. But in that place was no response from the vendor. The Core squad so contacted the society over again via Twitter on Jan 2, but over again received no response, so disclosed it publicly.

STATEMENT FROM TEAM COREL

There are no patches available for the vulnerabilities yet.

"Corel is reviewing its products on a case-by-case footing to safeguard dynamic loading of DLL files, which is a mutual vulnerability inward many Windows applications," said Jessica Gould, senior communications manager for Corel, inward a tilt Tuesday.

"Corel makes frequent updates to our applications in addition to these changes accept been made a priority for the side past times side update of whatever affected Corel product. We would similar to assure our users that nosotros are non aware of whatever exploits of this resultant amongst our software."