CVE-2022-33896

https://notcve.org/view.php?id=CVE-2022-33896

07 Oct 2022 — A buffer underflow vulnerability exists in the way Hword of Hancom Office 2020 version 11.0.0.5357 parses XML-based office files. A specially-crafted malformed file can cause memory corruption by using memory before buffer start, which can lead to code execution. A victim would need to access a malicious file to trigger this vulnerability. Se presenta una vulnerabilidad de desbordamiento del búfer en la forma en que Hword de Hancom Office 2020 versión 11.0.0.5357, analiza los archivos de oficina basados en ... • https://talosintelligence.com/vulnerability_reports/TALOS-2022-1574 • CWE-124: Buffer Underwrite ('Buffer Underflow') •