EUVD-2016-5294

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Heap-based buffer overflow in Hancom Office 2014 can enable code execution via .cell documents

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2016-4294	6 Jan 201721:59	–	attackerkb
CNVD	Hancom Office 2014 VP Local Arbitrary Code Execution Vulnerability (CNVD-2016-06357)	14 Aug 201600:00	–	cnvd
CVE	CVE-2016-4294	6 Jan 201721:00	–	cve
Cvelist	CVE-2016-4294	6 Jan 201721:00	–	cvelist
NVD	CVE-2016-4294	6 Jan 201721:59	–	nvd
OSV	CVE-2016-4294	6 Jan 201721:59	–	osv
Prion	Heap overflow	6 Jan 201721:59	–	prion
seebug.org	Hancom Hangul HCell OfficeArt Record pConnectionSites and pVertices Code Execution Vulnerability(CVE-2016-4294)	13 Oct 201700:00	–	seebug
Talos	Hancom Hangul HCell OfficeArt Record pConnectionSites and pVertices Code Execution Vulnerability	4 Aug 201600:00	–	talos

[
  {
    "enisaIdVendor": [
      {
        "id": "26dd1b40-6b8d-394f-a029-57534cb9bfc7",
        "vendor": {
          "name": "Hancom"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "535d5661-1e9d-3817-aaf1-89bc054f131f",
        "product": {
          "name": "Hancom Office"
        },
        "product_version": "2014 VP Trial HCell.exe Product version: 9.1.0.2176, HCellApp.dll Product version: 9.1.0.2176 HCellBook.dll Product version: 9.1.0.2176"
      }
    ]
  }
]

Source	Link
talosintelligence	www.talosintelligence.com/reports/TALOS-2016-0149/
securityfocus	www.securityfocus.com/bid/92327
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-4294
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.7High risk

Vulners AI Score7.7

CVSS 37.8

CVSS 26.8

EPSS0.00817