Lucene search
K
HancomHancom Office 2014

9 matches found

CVE
CVE
added 2018/12/21 4:0 p.m.60 views

CVE-2018-5201

CVE-2018-5201 affects Hancom Office products: Office 2018 (v10.0.0.8214) and earlier, Hancom Office NEO (v9.6.1.10472) and earlier, Hancom Office 2014 (v9.1.1.4540) and earlier, and Hancom Office 2010 (v8.5.8.1724) and earlier. The vulnerability is a heap overflow when processing Compound File do...

5.5CVSS5.6AI score0.0068EPSS
CVE
CVE
added 2017/01/06 9:0 p.m.58 views

CVE-2016-4291

CVE-2016-4291 affects Hancom Hangul Office 2014 VP (Hangul HShow). A structure field in an HShow document (.hpt) can cause an integer overflow during a size calculation, leading to an undersized heap allocation. Subsequent reads write beyond the allocated buffer, enabling code execution in the Ha...

7.8CVSS7.8AI score0.02133EPSS
CVE
CVE
added 2017/01/06 9:0 p.m.58 views

CVE-2016-4292

CVE-2016-4292 concerns Hancom Hangul Office 2014 VP’s Hangul HShow processing. A structure read from an HShow document (.hpt) causes the app to allocate a fixed 0xa0 byte buffer, then trust a length from the file to modify data inside that buffer. A 16‑bit value (treated as 15-bit) controls a loo...

7.8CVSS7.8AI score0.0209EPSS
CVE
CVE
added 2017/01/06 9:0 p.m.53 views

CVE-2016-4290

CVE-2016-4290 affects Hancom Hangul Office 2014 (HShow component) and is triggered when processing Hangul HShow documents (.hpt). The vulnerability stems from an integer overflow: when the software reads a length from the file and adds a constant (0x16) to it without checking for overflow, a too-...

7.8CVSS7.7AI score0.02133EPSS
CVE
CVE
added 2017/01/06 9:0 p.m.52 views

CVE-2016-4294

CVE-2016-4294 : Concrete heap-based buffer overflow in Hancom Hangul HCell OfficeArt handling. The vulnerability arises when parsing OfficeArtFOPT/OfficeArtSpContainer sub-records (pVertices and pSegmentInfo) in the Workbook stream. An IMsoArray structure (cbElem and nElems) is read from the comp...

7.8CVSS7.6AI score0.02423EPSS
CVE
CVE
added 2017/01/06 9:0 p.m.51 views

CVE-2016-4298

CVE-2016-4298 is a code-execution vulnerability in Hancom Hangul Office HShow component. Talos and other sources describe an integer overflow during processing of Hangul HShow documents (.hpt): while reading a 0x10-byte structure from decompressed zlib data, a length derived from the file is mult...

7.8CVSS7.7AI score0.02342EPSS
CVE
CVE
added 2017/04/20 5:0 p.m.47 views

CVE-2016-4293

The CVE-2016-4293 vulnerability affects Hancom Office 2014 VP. It occurs in Hangul Hcell documents when parsing 0x088e records in the Workbook stream: the 0x088e structure exposes table_style_length and pivot_style_length fields (at offsets 0x10 and 0x12) that are used to copy strings into the CB...

7.8CVSS7.9AI score0.03617EPSS
CVE
CVE
added 2017/01/06 9:0 p.m.47 views

CVE-2016-4295

Concrete details from connected reports show CVE-2016-4295 affects Hancom Hangul Hangul HCell components (HCell.exe, HCellApp.dll, HCellBook.dll, 9.1.0.2176) in Hancom Office 2014 VP. The root cause is a bounds-checking flaw in CFormulaTokenSizeModifier during chart/formula processing of Workbook...

7.8CVSS7.9AI score0.02232EPSS
CVE
CVE
added 2017/01/06 9:0 p.m.46 views

CVE-2016-4296

This CVE (CVE-2016-4296) affects Hancom Hangul HCell components (HCellApp, HCellBook, CSSValFormat) used in Hangul Office. The root cause is in CSSValFormat::CheckUnderbar: it seeks the last underscore in a Unicode string and rewrites that underscore plus a null terminator, which when the string ...

7.8CVSS8AI score0.02232EPSS