virus logo Intrusion Prevention

Hangul.Word.Processor.Heap.Overflow

description-logoDescription

This indicates an attack attempt against a Heap Overflow vulnerability in Hancom Hanword Processor (HWP).
The vulnerability is caused by an uninitialized variable when the vulnerable software handles a crafted HWP document. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted file.

affected-products-logoAffected Products

Hancom Office Hanword component HwpApp.dll version 9.1.0.2704 and prior

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the latest update available from the vendor:
http://www.hancom.com/downLoad.downPU.do?mcd=005

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 42679
Created Jul 13, 2016
Updated May 02, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows
Affected App Other