2 matches found
CVE-2017-2819
CVE-2017-2819 is an exploitable heap-based buffer overflow in Hancom Thinkfree Office NEO (Hangul Word Processor, Hangul WPD) v9.6.1.4350. The issue occurs when processing HWPTAG_TAB_DEF(22) records in the DocInfo stream of the Hangul Word Processing Document format; a signed comparison during dy...
CVE-2015-6585
The CVE-2015-6585 vulnerability affects Hancom Hangul Word Processor (Hangul Word Processor) via hwpapp.dll. The root cause involves a type confusion built around para changes and a crafted HWPX file, combined with a crafted heap spray, enabling remote attackers to execute arbitrary code. The con...