CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-38108
https://notcve.org/view.php?id=CVE-2021-38108
01 Oct 2021 — Word97Import200.dll in Corel WordPerfect 2020 20.0.0.200 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious DOC file. La biblioteca Word97Import200.dll en Corel WordPerfect 2020 versión 20.0.0.200, está afectado por una vulnerabilidad de lectura fuera de l... • https://www.fortiguard.com/zeroday/FG-VD-21-037 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-38110
https://notcve.org/view.php?id=CVE-2021-38110
01 Oct 2021 — Word97Import200.dll in Corel WordPerfect 2020 20.0.0.200 is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious DOC file. La biblioteca Word97Import200.dll en Corel WordPerfect 2020 versión 20.0.0.200, está afectado por una vulnerabilidad de escritura fuera de... • https://www.fortiguard.com/zeroday/FG-VD-21-036 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 0CVE-2015-6948 – Corel WordPerfect Heap Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-6948
02 Sep 2015 — Heap-based buffer overflow in the Microsoft Word document conversion feature in Corel WordPerfect allows remote attackers to execute arbitrary code via a crafted document. Desbordamiento de buffer basado en memoria dinámica en la funcionalidad conversión de documento en Corel WordPerfect, permite a atacantes remotos ejecutar código arbitrario a través de un documento manipulado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Corel WordPerfect. User intera... • http://www.securitytracker.com/id/1033559 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2012-4900 – Corel WordPerfect X6 Standard Edition Untrusted Pointer Dereference
https://notcve.org/view.php?id=CVE-2012-4900
08 Mar 2013 — Corel WordPerfect Office X6 16.0.0.388 has a DoS Vulnerability via untrusted pointer dereference Corel WordPerfect Office X6 versión 16.0.0.388, presenta una vulnerabilidad de DoS por medio de una desreferencia de puntero no confiable. Corel WordPerfect version X6 Standard Edition suffers from an untrusted pointer dereference vulnerability. • https://packetstorm.news/files/id/120712 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 12%CPEs: 1EXPL: 3CVE-2007-1735 – Corel WordPerfect X3 13.0.0.565 - '.prs' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-1735
28 Mar 2007 — Stack-based buffer overflow in Corel WordPerfect Office X3 (13.0.0.565) allows user-assisted remote attackers to execute arbitrary code via a long printer selection (PRS) name in a Wordperfect document. Desbordamiento de búfer basado en pila en Corel WordPerfect Office X3 (13.0.0.565) permite a atacantes remotos con intervención del usuario ejecutar código de su elección mediante un nombre de selección de impresora (PRS) largo en un documento Wordperfect. • https://www.exploit-db.com/exploits/3593 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1173
https://notcve.org/view.php?id=CVE-1999-1173
18 Dec 1998 — Corel Word Perfect 8 for Linux creates a temporary working directory with world-writable permissions, which allows local users to (1) modify Word Perfect behavior by modifying files in the working directory, or (2) modify files of other users via a symlink attack. • http://marc.info/?l=bugtraq&m=91404045014047&w=2 •