Intrusion Prevention

Corel.PaintShop.Pro.D2D1.DLL.Insecure.Library.Loading

Description

This indicates an attack attempt to exploit a remote Code Execution vulnerability in Corel PaintShop Pro.
The vulnerability is due to the way Corel PaintShop Pro handles DLLs. An attacker can trick an unsuspecting user into accessing a malicious Office file and then execute arbitrary code with the authenticated privileges of the user

Affected Products

corel:paintshop_pro_x5:16.0.0.113 and previous versions
corel:paintshop_pro_x6:16.0.0.113 and previous versions
corel:paintshop_pro_x5:15.2.0.2 and previous versions
corel:paintshop_pro_x6:15.2.0.2 and previous versions

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patch or updates available for this issue.

CVE References

CVE-2013-0733