CVE-2017-2819
https://notcve.org/view.php?id=CVE-2017-2819
An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code execution under the context of the application. An attacker can entice a user to open up a document in order to trigger this vulnerability. Existe un desbordamiento de búfer en la región heap de la memoria explotable en el componente Hangul Word Processor (versión 9.6.1.4350) de Hancom Thinkfree Office NEO versión 9.6.1.4902. Un flujo de documentos especialmente diseñados puede causar un flujo de enteros resultando en un subdesbordamiento de búfer que puede conllevar a la ejecución de código bajo el contexto de la aplicación. • https://talosintelligence.com/vulnerability_reports/TALOS-2017-0320 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2016-4293
https://notcve.org/view.php?id=CVE-2016-4293
Multiple heap-based buffer overflows in the (1) CBookBase::SetDefTableStyle and (2) CBookBase::SetDefPivotStyle functions in Hancom Office 2014 VP allow remote attackers to execute arbitrary code via a crafted Hangul Hcell Document (.cell) file. Múltiples desbordamientos de buffer basado en memoria dinámica en las funciones (1) CBookBase::SetDefTableStyle y (2) CBookBase::SetDefPivotStyle en Hancom Office 2014 VP permite a atacantes remotos ejecutar código arbitrario a través de un documento Hangul Hcell Document (.cell) manipulado. • http://www.securityfocus.com/bid/92327 http://www.talosintelligence.com/reports/TALOS-2016-0148 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2016-4296
https://notcve.org/view.php?id=CVE-2016-4296
When opening a Hangul Hcell Document (.cell) and processing a record that uses the CSSValFormat object, Hancom Office 2014 will search for an underscore ("_") character at the end of the string and write a null terminator after it. If the character is at the very end of the string, the application will mistakenly write the null-byte outside the bounds of its destination. This can result in heap corruption that can lead code execution under the context of the application Cuando se abre un Hangul Hcell Document (.cell) y se procesa un registro que utiliza el objeto CSSValFormat, Hancom Office 2014 buscará un caracter de guión bajo ("_") al final de la cadena y escribirá un terminador nulo tras él. Si el carácter está al final de la cadena, la aplicación escribirá erróneamente el byte nulo fuera de los límites de su destino. Esto puede resultar en la corrupción de la memoria dinámica, que puede conducir a ejecución de código bajo el contexto de la aplicación. • http://www.securityfocus.com/bid/92327 http://www.talosintelligence.com/reports/TALOS-2016-0151 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2016-4291
https://notcve.org/view.php?id=CVE-2016-4291
When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will use a field from the structure in an operation that can cause the integer to overflow. This result is then used to allocate memory to copy file data in. Due to the lack of bounds checking on the integer, the allocated memory buffer can be made to be undersized at which point the reading of file data will write outside the bounds of the buffer. This can lead to code execution under the context of the application. Cuando se abre un Hangul HShow Document (.hpt) y se procesa una estructura dentro del documento, Hancom Office 2014 utilizará un campo de la estructura en una operación que puede provocar que el entero se desborde. • http://www.securityfocus.com/bid/92325 http://www.talosintelligence.com/reports/TALOS-2016-0146 • CWE-190: Integer Overflow or Wraparound •
CVE-2016-4295
https://notcve.org/view.php?id=CVE-2016-4295
When opening a Hangul Hcell Document (.cell) and processing a particular record within the Workbook stream, an index miscalculation leading to a heap overlow can be made to occur in Hancom Office 2014. The vulnerability occurs when processing data for a formula used to render a chart via the HncChartPlugin.hplg library. Due to a lack of bounds-checking when incrementing an index that is used for writing into a buffer for formulae, the application can be made to write pointer data outside its bounds which can lead to code execution under the context of the application. Cuando se abre un Hangul Hcell Document (.cell) y se procesa un registro en particular dentro del Workbook stream, puede hacer que ocurra un error de cálculo del índice que conduce a un desbordamiento de la memoria dinámica en Hancom Office 2014. La vulnerabilidad ocurre cuando se procesan datos para una fórmula empleada para representar un gráfico a través de la librería HncChartPlugin.hplg. • http://www.securityfocus.com/bid/92327 http://www.talosintelligence.com/reports/TALOS-2016-0150 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •