3 matches found
CVE-2019-16337
CVE-2019-16337 affects Hancom Office 9.6.1.9403 via the hncbd90 library. A use-after-free is triggered by an unknown object in a crafted .docx file, allowing arbitrary code execution in the application's context (per CNVD entry mentioning code execution). Other connected records reiterate the sam...
CVE-2018-5201
CVE-2018-5201 affects Hancom Office products: Office 2018 (v10.0.0.8214) and earlier, Hancom Office NEO (v9.6.1.10472) and earlier, Hancom Office 2014 (v9.1.1.4540) and earlier, and Hancom Office 2010 (v8.5.8.1724) and earlier. The vulnerability is a heap overflow when processing Compound File do...
CVE-2019-16338
The CVE-2019-16338 issue affects Hancom Office’s HwordApp.dll (tfo_common) in version 9.6.1.7634, where a crafted .docx enables a use-after-free vulnerability. Public sources in the connected docs describe the flaw and corroborate that it can lead to arbitrary code execution. CVSS data indicates ...