Corel VideoStudio Pro X7 and FastFlix u32ZLib DLL Hijacking Exploit

Untrusted search path vulnerability in Corel VideoStudio Pro X7 17.0.0.249 and Corel FastFlix 17.0.0.249 and earlier, and possibly other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse u32ZLib.dll that is located in the same folder as an .vsp or .vfp file.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2014-8397
Product Version: 
2014_R2
Released Date: 
Wednesday, January 21, 2015 - 00:00