본문내용 바로가기 메인메뉴 바로가기

하단내용 바로가기

Security Advisory (Korean)

Security Advisory Detail
CVE-2018-5201 | Hancom Office Heap Overflow Vulnerability2018.12.20
□ Overview
 o Hancom release security updates to address a heap based overflow vulnerability in Hancom Office.

□ Description
 o Hancom Office 2018, Hancom Office NEO, Hancom Office 2014, Hancom Office 2010 have a heap overflow vulnerability when handling Compound File in document. This result in a program crash or denial of service conditions.
Vulnerability type Impact Severity CVE ID
Heap Overflow Denial Of Service Medium CVE-2018-5201

□ Affected Products
Product Version
Hancom Office 2018 10.0.0.8214
Hancom Office NEO 9.6.1.10472
Hancom Office 2014 9.1.1.4540
Hancom Office 2010 8.5.8.1724

□ Solution
 o Update to the latest version according to the information provided on the website.
 https://www.hancom.com/cs_center/csDownload.do

□ Acknowledgements 
o Thanks to Yaniv Frank for reporting this vulerability.