QwikSec

Security Database

CVE

CWE

Training

CVE-2012-1206

Published: Feb 20, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple integer overflows in Hancom Office 2010 SE 8.5.5 allow remote attackers to execute arbitrary code via large dimension values in a (1) JPG image to the ImportGR in the JPG image filter module (HncJpeg10.flt) or (2) PNG image to the PNG image filter module (HncPng10.flt), which triggers a heap-based buffer overflow.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

hancom-png-bo(73026)

vdb-entry

x_refsource_XF

http://www.hancom.co.kr/notice.noticeView.do?targetRow=1&notice_seqno=100

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

hancom-importgr-bo(73025)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_OSVDB

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.