CVE-2012-1206

Name of the Vulnerable Software and Affected Versions Hancom Office 2010 SE version 8.5.5

Description The issue is related to multiple integer overflows that can be triggered by large dimension values in JPG or PNG images. This can lead to a heap-based buffer overflow, allowing remote attackers to execute arbitrary code. The vulnerability can be exploited through the ImportGR in the JPG image filter module (HncJpeg10.flt) or the PNG image filter module (HncPng10.flt).

Recommendations For Hancom Office 2010 SE version 8.5.5, consider disabling the HncJpeg10.flt and HncPng10.flt modules to prevent the exploitation of this issue until a patch is available. Avoid opening or importing JPG and PNG images from untrusted sources to minimize the risk of exploitation.