DocuSign Signature Appliance – Issue with the “CoSign” Logo / Watermark appearing in Office 2010/2013/2016 Signatures


Product:
  • DocuSign Signature Appliance
Affected versions:
  • Signature Appliance Client v8.1, and below
Symptoms:
When you sign a document in Office 2010/2013/2016, a black box appears instead of the "CoSign” logo / watermark. An example of this behavior can be seen below;

Signature showing issue

Reason:
The background for this behavior is outlined in CVE-2016-3216:
GDI32.dll in the Graphics component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attackers to bypass the ASLR protection mechanism via unspecified vectors, aka "Windows Graphics Component Information Disclosure Vulnerability."
As such, the KB causes the EMF to become black

Solution:
The issue can be resolved by adding KB4015549 to the impacted workstation.

Other Known Workarounds:
  1. Upgrade to Signature Appliance client v8.2 (only for customers on a valid subscription – See https://support.docusign.com/en/articles/DocuSign-Signature-Appliance-Formerly-known-as-CoSign-Product-Version)
  2. Uninstall MS KBs (KB4012212 and / or KB4012215);
Have an issue? To send us an email, please submit this form.

Thank you,
The Signature Appliance Group at DocuSign Support