PT-2018-5052 · Corel · Core Photo-Paint X8
Published
2018-04-24
·
Updated
2022-12-13
·
CVE-2016-8730
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Core PHOTO-PAINT X8 version 18.1.0.661
Description
A memory corruption vulnerability exists in the GIF parsing functionality. This issue can be triggered by a specially crafted GIF file, potentially resulting in code execution. An attacker can exploit this by sending a specific GIF file to the victim.
Recommendations
For Core PHOTO-PAINT X8 version 18.1.0.661, consider avoiding the use of the GIF parsing functionality until a patch is available. As a temporary workaround, refrain from opening unfamiliar or untrusted GIF files to minimize the risk of exploitation.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Core Photo-Paint X8