10 matches found
EUVD-2016-5291
Malware in sbrugna...
CVE-2016-4298
When opening a Hangul HShow Document .hpt and processing a structure within the document, Hancom Office 2014 will attempt to allocate space for a list of elements using a length from the file. When calculating this length, an integer overflow can be made to occur which will cause the buffer to be...
CVE-2016-4291
When opening a Hangul HShow Document .hpt and processing a structure within the document, Hancom Office 2014 will use a field from the structure in an operation that can cause the integer to overflow. This result is then used to allocate memory to copy file data in. Due to the lack of bounds...
CVE-2016-4292
When opening a Hangul HShow Document .hpt and processing a structure within the document, Hancom Office 2014 will use a static size to allocate a heap buffer yet explicitly trust a size from the file when modifying data inside of it. Due to this, an aggressor can corrupt memory outside the bounds...
CVE-2016-4292
When opening a Hangul HShow Document .hpt and processing a structure within the document, Hancom Office 2014 will use a static size to allocate a heap buffer yet explicitly trust a size from the file when modifying data inside of it. Due to this, an aggressor can corrupt memory outside the bounds...
Integer overflow
When opening a Hangul HShow Document .hpt and processing a structure within the document, Hancom Office 2014 will use a field from the structure in an operation that can cause the integer to overflow. This result is then used to allocate memory to copy file data in. Due to the lack of bounds...
CVE-2016-4291
When opening a Hangul HShow Document .hpt and processing a structure within the document, Hancom Office 2014 will use a field from the structure in an operation that can cause the integer to overflow. This result is then used to allocate memory to copy file data in. Due to the lack of bounds...
CVE-2016-4298
When opening a Hangul HShow Document .hpt and processing a structure within the document, Hancom Office 2014 will attempt to allocate space for a list of elements using a length from the file. When calculating this length, an integer overflow can be made to occur which will cause the buffer to be...
Integer overflow
When opening a Hangul HShow Document .hpt and processing a structure within the document, Hancom Office 2014 will attempt to allocate space for a list of elements using a length from the file. When calculating this length, an integer overflow can be made to occur which will cause the buffer to be...
CVE-2016-4292
CVE-2016-4292 concerns Hancom Hangul Office 2014 VP’s Hangul HShow processing. A structure read from an HShow document (.hpt) causes the app to allocate a fixed 0xa0 byte buffer, then trust a length from the file to modify data inside that buffer. A 16‑bit value (treated as 15-bit) controls a loo...