Corel VideoStudio Pro X7 and Corel FastFlix are prone to a vulnerability that may allow the loading and execution of any library file named u32ZLib.dll, if this dll is located in the same folder where a .VSP or .VFP file is. The attacker must entice a victim into opening a specially crafted .VSP or .VFP file. This file and the associated binary may be delivered to a user through remote WebDAV shares. An attacker may exploit this issue to execute arbitrary code.
CVE Link
Exploit Platform
Exploit Type
Product Name