Hancom : Security Vulnerabilities, CVEs, (Code Execution) CVSS score >= 6
Multiple heap-based buffer overflows in the (1) CBookBase::SetDefTableStyle and (2) CBookBase::SetDefPivotStyle functions in Hancom Office 2014 VP allow remote attackers to execute arbitrary code via a crafted Hangul Hcell Document (.cell) file.
Max CVSS
7.8
EPSS Score
2.31%
Published
2017-04-20
Updated
2017-04-27
hwpapp.dll in Hangul Word Processor allows remote attackers to execute arbitrary code via a crafted heap spray, and by leveraging a "type confusion" via an HWPX file containing a crafted para text tag.
Max CVSS
7.8
EPSS Score
2.20%
Published
2017-07-25
Updated
2017-08-10
Multiple integer overflows in Hancom Office 2010 SE 8.5.5 allow remote attackers to execute arbitrary code via large dimension values in a (1) JPG image to the ImportGR in the JPG image filter module (HncJpeg10.flt) or (2) PNG image to the PNG image filter module (HncPng10.flt), which triggers a heap-based buffer overflow.
Max CVSS
9.3
EPSS Score
6.46%
Published
2012-02-24
Updated
2017-08-29
3 vulnerabilities found