CVE-2016-4296
Last modified
CVE-2016-4296 is a vulnerability of currently unknown severity. When opening a Hangul Hcell Document (.cell) and processing a record that uses the CSSValFormat object, Hancom Office 2014 will search for an underscore ("_") character at the end of the string and write a null terminator after it. If the character is at the very end of the string, the application will mistakenly write the null-byte outside the bounds of its destination. EPSS estimates a 2.21% chance of exploitation in the next 30 days.
Description
When opening a Hangul Hcell Document (.cell) and processing a record that uses the CSSValFormat object, Hancom Office 2014 will search for an underscore ("_") character at the end of the string and write a null terminator after it. If the character is at the very end of the string, the application will mistakenly write the null-byte outside the bounds of its destination. This can result in heap corruption that can lead code execution under the context of the application
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Hancom | Hancom Office 2014 | <= 9.1.0.2176 |
References
- http://www.talosintelligence.com/reports/TALOS-2016-0151/Exploit, Technical Description, Third Party Advisory, VDB Entry
- http://www.talosintelligence.com/reports/TALOS-2016-0151/Exploit, Technical Description, Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2016-4296?
How severe is CVE-2016-4296?
How do I fix CVE-2016-4296?
Are you affected by CVE-2016-4296?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST