CVE-2017-2803
First published: Tue Apr 24 2018(Updated: )
A remote out of bound write vulnerability exists in the TIFF parsing functionality of Core PHOTO-PAINT X8 version 18.1.0.661. A specially crafted TIFF file can cause a vulnerability resulting in potential memory corruption. An attacker can send the victim a specific TIFF file to trigger this vulnerability. This vulnerability only exists in the 64-bit version.
Credit: talos-cna@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Corel Coreldraw Photo Paint X8 | =18.1.0.661 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2017-2803?
CVE-2017-2803 is a remote out of bound write vulnerability in the TIFF parsing functionality of Core PHOTO-PAINT X8 version 18.1.0.661.
What is the severity of CVE-2017-2803?
CVE-2017-2803 has a severity score of 7.8, which is considered high.
How does CVE-2017-2803 affect CorelDRAW PHOTO-PAINT X8?
CVE-2017-2803 affects CorelDRAW PHOTO-PAINT X8 version 18.1.0.661.
How can an attacker exploit CVE-2017-2803?
An attacker can exploit CVE-2017-2803 by sending a specially crafted TIFF file to the victim, causing potential memory corruption.
Where can I find more information about CVE-2017-2803?
You can find more information about CVE-2017-2803 at the following references: - [SecurityFocus](http://www.securityfocus.com/bid/99900) - [Talos Intelligence](https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0297)
- collector/nvd-index
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/tags
- agent/description
- agent/event
- agent/first-publish-date
- vendor/corel
- canonical/corel coreldraw photo paint x8
- version/corel coreldraw photo paint x8/18.1.0.661