Hangul.Word.Processor.Heap.Overflow
Description
This indicates an attack attempt against a Heap Overflow vulnerability in Hancom Hanword Processor (HWP).
The vulnerability is caused by an uninitialized variable when the vulnerable software handles a crafted HWP document. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted file.
Affected Products
Hancom Office Hanword component HwpApp.dll version 9.1.0.2704 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the latest update available from the vendor:
http://www.hancom.com/downLoad.downPU.do?mcd=005
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |