This host is installed with Corel PDF Fusion and is prone to multiple vulnerabilities.

Successful exploitation will allow remote attacker to execute arbitrary code, cause a denial of service (application crash) and allows local users to gain privileges via a Trojan horse wintab32.dll file. Impact Level: System/Application

No Solution is available as of 15 October, 2013 Information regarding this issue will updated once the solution details are available. http://www.corel.com/corel/product/index.jsp?pid=prod4100140

Multiple flaws are due to, - The application loads a library (wintab32.dll) in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into opening a '.pdf' or '.xps' file. - A boundary error exists when parsing names in ZIP directory entries of a XPS file and can be exploited to cause a stack-based buffer overflow by tricking a user into opening a specially crafted XPS file.

Corel PDF Fusion 1.11

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

• http://cxsecurity.com/cveshow/CVE-2013-0742
• http://secunia.com/advisories/52707/
• http://www.securityfocus.com/bid/61010

---

Updated on 2015-03-25