CVE-2015-2810

Name of the Vulnerable Software and Affected Versions Hancom Office HanWord processor versions prior to 9.1.0.2342 HanWord Viewer 2007 and Viewer 2010 version 8.5.6.1158 HwpViewer 2014 VP version 9.1.0.2186

Description The issue is related to an integer overflow in the HwpApp::CHncSDS Manager function. This can be triggered by a document with a large paragraph size, leading to heap corruption. As a result, remote attackers can cause a denial of service (crash) and possibly influence the program's execution flow.

Recommendations For Hancom Office HanWord processor versions prior to 9.1.0.2342, update to version 9.1.0.2342 or later. For HanWord Viewer 2007 and Viewer 2010 version 8.5.6.1158, update to a version later than 8.5.6.1158. For HwpViewer 2014 VP version 9.1.0.2186, update to a version later than 9.1.0.2186.