CVE-2016-4293

Multiple heap-based buffer overflows in the (1) CBookBase::SetDefTableStyle and (2) CBookBase::SetDefPivotStyle functions in Hancom Office 2014 VP allow remote attackers to execute arbitrary code via a crafted Hangul Hcell Document (.cell) file.
References
Link Resource
http://www.securityfocus.com/bid/92327 Third Party Advisory VDB Entry
http://www.talosintelligence.com/reports/TALOS-2016-0148/ Exploit Technical Description Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:hancom:hancom_office_2014:9.1.0.2176:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-04-20 17:59

Updated : 2024-02-04 19:11


NVD link : CVE-2016-4293

Mitre link : CVE-2016-4293

CVE.ORG link : CVE-2016-4293


JSON object : View

Products Affected

hancom

  • hancom_office_2014
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer