CVE-2021-38104

Name of the Vulnerable Software and Affected Versions Corel Presentations version 20.0.0.200

Description The issue is related to an Out-of-bounds Read vulnerability in the IPPP72.FLT module when parsing a crafted file. This could allow an unauthenticated attacker to access unauthorized system memory in the context of the current user. Exploitation requires user interaction, specifically opening a malicious PPT file.

Recommendations For Corel Presentations version 20.0.0.200, consider avoiding the use of the IPPP72.FLT module until a patch is available. As a temporary workaround, refrain from opening suspicious or untrusted PPT files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.