3 matches found
CVE-2022-33896
A buffer underflow vulnerability exists in the way Hword of Hancom Office 2020 version 11.0.0.5357 parses XML-based office files. A specially-crafted malformed file can cause memory corruption by using memory before buffer start, which can lead to code execution. A victim would need to access a...
CVE-2022-33896
Hancom Office 2020 (Hword) vulnerability CVE-2022-33896 is a heap/buffer underflow in Hword when parsing XML-based documents. A specially crafted malicious .docx can trigger memory corruption by using memory before the allocation, potentially enabling arbitrary code execution. Affected version: H...
Hancom Office 2020 Hword Docx XML parsing heap underflow vulnerability
Talos Vulnerability Report TALOS-2022-1574 Hancom Office 2020 Hword Docx XML parsing heap underflow vulnerability October 4, 2022 CVE Number CVE-2022-33896 SUMMARY A buffer underflow vulnerability exists in the way Hword of Hancom Office 2020 version 11.0.0.5357 parses XML-based office files. A...