2014-11-12 02:00

Title: CorelDRAW X7 CDR File (CdrTxt.dll) Off-By-One Stack Corruption Vulnerability
Advisory ID: ZSL-2014-5204
Type: Local/Remote
Impact: System Access, DoS
Risk: (3/5)
Release Date: 12.11.2014

Summary

CorelDRAW is one of the image-creating programs in asuite of graphic arts software used by professional artists,educators, students, businesses and the general public. TheCorelDRAW Graphics Suite X7, which includes CorelDRAW, is soldas stand-alone software and as a cloud-based subscription.CorelDRAW is the core of the graphics suite and is primarilyused for vector illustrations and page layouts.

Description

CorelDRAW is prone to an off-by-one memory corruptionvulnerability. An attacker can exploit this issue by trickinga victim into opening a malicious CDR file to execute arbitrarycode and/or to cause denial-of-service conditions.

Vendor

Corel Corporation - http://www.corel.com

Affected Version

17.1.0.572 (X7) - 32bit/64bit (EN)
15.0.0.486 (X5) - 32bit (EN)

Tested On

Microsoft Windows 7 Professional SP1 (EN)

Vendor Status

N/A

PoC

coreldraw_obo.txt
zsl_5204.rar

Credits

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk>

References

N/A

Changelog

[12.11.2014] - Initial release

Contact

Zero Science Lab

Web: http://www.zeroscience.mk
e-mail: lab@zeroscience.mk

---

Source: php.4025-4102-LSZ/seitilibarenluv/ne/km.ecneicsorez.www

Read:308165 | Comments:0 | Tags: Vulnerability