Hancom Hangul Word Processor vulnerabilities
2 known vulnerabilities affecting hancom/hangul_word_processor.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2015-6585P2HIGHCVSS 7.8Exploitedv20142017-07-25
CVE-2015-6585 [HIGH] CWE-119 CVE-2015-6585: hwpapp.dll in Hangul Word Processor allows remote attackers to execute arbitrary code via a crafted
hwpapp.dll in Hangul Word Processor allows remote attackers to execute arbitrary code via a crafted heap spray, and by leveraging a "type confusion" via an HWPX file containing a crafted para text tag.
nvd
CVE-2017-2819P3HIGHCVSS 7.8v9.6.1.43502017-05-24
CVE-2017-2819 [HIGH] CWE-119 CVE-2017-2819: An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6
An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code execution under the context of the application. An attacker can entice a user to o
nvd