VYPR
Unrated severityNVD Advisory· Published Feb 24, 2012· Updated Jun 16, 2026

CVE-2012-1206

CVE-2012-1206

Description

Multiple integer overflows in Hancom Office 2010 SE 8.5.5 allow remote attackers to execute arbitrary code via large dimension values in a (1) JPG image to the ImportGR in the JPG image filter module (HncJpeg10.flt) or (2) PNG image to the PNG image filter module (HncPng10.flt), which triggers a heap-based buffer overflow.

Affected products

2
  • cpe:2.3:a:hancom:hancom_office_2010_se:8.5.5:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:hancom:hancom_office_2010_se:8.5.5:*:*:*:*:*:*:*
    • (no CPE)range: =8.5.5

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.