Untrusted search path vulnerability in Corel Painter 2015 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wacommt.dll file that is located in the same folder as the file being processed.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8395
Reference (s):
- BID:72006
- URL: http://www.securityfocus.com/bid/72006
- BUGTRAQ:20150112 Corel Software DLL Hijacking
- URL: http://www.securityfocus.com/archive/1/534452/100/0/threaded
- FULLDISC:20150112 Corel Software DLL Hijacking