VYPR

Hangul Word Processor

by Hancom

CVEs (2)

  • CVE-2017-2819HigMay 24, 2017
    risk 0.57cvss 8.8epss 0.02

    An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code…

  • CVE-2015-6585HigJul 25, 2017
    risk 0.51cvss 7.8epss 0.02

    hwpapp.dll in Hangul Word Processor allows remote attackers to execute arbitrary code via a crafted heap spray, and by leveraging a "type confusion" via an HWPX file containing a crafted para text tag.