Daniel Regalado

**Name of the Vulnerable Software and Affected Versions** Hancom Office HanWord processor versions prior to 9.1.0.2342 HanWord Viewer 2007 and Viewer 2010 version 8.5.6.1158 HwpViewer 2014 VP version 9.1.0.2186 **Description** The issue is related to an integer overflow in the HwpApp::CHncSDS Manager function. This can be triggered by a document with a large paragraph size, leading to heap corruption. As a result, remote attackers can cause a denial of service (crash) and possibly influence the program's execution flow. **Recommendations** For Hancom Office HanWord processor versions prior to 9.1.0.2342, update to version 9.1.0.2342 or later. For HanWord Viewer 2007 and Viewer 2010 version 8.5.6.1158, update to a version later than 8.5.6.1158. For HwpViewer 2014 VP version 9.1.0.2186, update to a version later than 9.1.0.2186.