Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCertccCVELIST:CVE-2016-4294
HistoryJan 06, 2017 - 9:00 p.m.

CVE-2016-4294

2017-01-0621:00:00
certcc
www.cve.org

0.001 Low

EPSS

Percentile

47.0%

JSON

When opening a Hangul Hcell Document (.cell) and processing a property record within the Workbook stream, Hancom Office 2014 will attempt to allocate space for an element using a length from the file. When copying user-supplied data to this buffer, however, the application will use a different size which leads to a heap-based buffer overflow. This vulnerability can lead to code-execution under the context of the application.

CNA Affected

[
  {
    "product": "Hancom Office",
    "vendor": "Hancom",
    "versions": [
      {
        "status": "affected",
        "version": "2014 VP Trial HCell.exe Product version: 9.1.0.2176, HCellApp.dll Product version: 9.1.0.2176 HCellBook.dll Product version: 9.1.0.2176"
      }
    ]
  }
]

Related

seebug 1
talos 1
cve 1
prion 1
nvd 1
seebug
seebug
Hancom Hangul HCell OfficeArt Record pConnectionSites and pVertices Code Execution Vulnerability(CVE-2016-4294)
2017-10-13 00:00:00
talos
talos
Hancom Hangul HCell OfficeArt Record pConnectionSites and pVertices Code Execution Vulnerability
2016-08-04 00:00:00
cve
cve
CVE-2016-4294
2017-01-06 21:59:01
prion
prion
Heap overflow
2017-01-06 21:59:00
nvd
nvd
CVE-2016-4294
2017-01-06 21:59:01

0.001 Low

EPSS

Percentile

47.0%

JSON
Related for CVELIST:CVE-2016-4294
seebug1talos1cve1prion1nvd1