CVE-2016-4298

Name of the Vulnerable Software and Affected Versions Hancom Office 2014

Description The issue arises when opening a Hangul HShow Document (.hpt) and processing a structure within the document. An integer overflow can occur when calculating the length for allocating space for a list of elements, resulting in an undersized buffer. This allows for the overwrite of contiguous data in the heap, potentially leading to code execution under the context of the application.

Recommendations For Hancom Office 2014, at the moment, there is no information about a newer version that contains a fix for this vulnerability.