Date published: 2015-01-15T10:59:12.593-05:00
Date last modified: 2015-02-17T10:43:38.317-05:00
CVSS Score: 4.6
Principal attack vector: LOCAL
Reference URL: http://seclists.org/fulldisclosure/2015/Jan/33
Summary: Untrusted search path vulnerability in Corel VideoStudio PRO X7 or FastFlick allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse u32ZLib.dll file that is located in the same folder as the file being processed.