Hancom Office Multiple Integer Overflow Vulnerabilities
BID:51892
Info
Hancom Office Multiple Integer Overflow Vulnerabilities
| Bugtraq ID: | 51892 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2012-1206 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 07 2012 12:00AM |
| Updated: | Feb 22 2012 02:30PM |
| Credit: | Tielei Wang via Secunia |
| Vulnerable: |
Hancom Hancom Office 2010 SE 8.5.5 |
| Not Vulnerable: | |
Discussion
Hancom Office Multiple Integer Overflow Vulnerabilities
Hancom Office is prone to multiple integer-overflow vulnerabilities because the application fails to perform adequate boundary checks on user-supplied input.
Attackers may leverage these issues to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
Hancom Office 2010 SE 8.5.5 is vulnerable; other versions may also be affected.
Hancom Office is prone to multiple integer-overflow vulnerabilities because the application fails to perform adequate boundary checks on user-supplied input.
Attackers may leverage these issues to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions.
Hancom Office 2010 SE 8.5.5 is vulnerable; other versions may also be affected.
Exploit / POC
Hancom Office Multiple Integer Overflow Vulnerabilities
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Hancom Office Multiple Integer Overflow Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]