Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-8397


Vulnerability Score 4.6 4.6
CVE Id CVE-2014-8397
Last Modified 17 Feb 2015 10:43:38
Published 15 Jan 2015 10:59:12
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



Untrusted search path vulnerability in Corel VideoStudio PRO X7 or FastFlick allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse u32ZLib.dll file that is located in the same folder as the file being processed.

Vulnerable Systems


  • Corel Fastflick

  • Corel Videostudio Pro 7

  • Corel Videostudio Pro X7


BID - 72009

BUGTRAQ - 20150112 Corel Software DLL Hijacking


Last Updated: 27 May 2016 11:07:49