![]() Due to the malformed QPW file the EDX register will contain a null value. Opening of a malicious QPW (Quattro Pro Spreadsheet) document causes immediate application crash, resulting in a loss of all unsaved current application data of the user.ġ) Multiple Null Pointer Dereference vulnerabilities in Corel Quattro Pro X6: CVE-2012-4728ġ.1 The first crash occurs in the QPW160.dll module at the QProGetNotebookWindowHandle function when the application tries to move a value to a corrupted pointer. High-Tech Bridge Security Research Lab discovered two null pointer dereference vulnerabilities in Corel Quattro Pro. Vulnerability Type: NULL Pointer Dereference ĬVSSv2 Base Score: 2.6 (AV:N/AC:H/Au:N/C:N/I:N/A:P)ĭiscovered and Provided: High-Tech Bridge Security Research Lab ( ) Tested Version: 16.0.0.388 on Windows 7 SP1 32 bits Vulnerable Version(s): 16.0.0.388, other versions may be also affected Product: Corel Quattro Pro X6 Standard Edition Change Mirror Download Advisory ID: HTB23112
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |