← Back

Hangul Word Processor

hangul_word_processor

Vendor: Hancom • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2015-6585
1Hancom
1Hangul Word Processor
May 13, 2026
Jul 25, 2017
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
hwpapp.dll in Hangul Word Processor allows remote attackers to execute arbitrary code via a crafted heap spray, and by leveraging a "type confusion" via an HWPX file containing a crafted para text tag.
CVE-2017-2819
1Hancom
2Hangul Word Processor
Thinkfree Office Neo
May 13, 2026
May 24, 2017
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow r...Show more
An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. A specially crafted document stream can cause an integer underflow resulting in a buffer overflow which can lead to code execution under the context of the application. An attacker can entice a user to open up a document in order to trigger this vulnerability.Show less