all InfoSec news
Vulnerability Spotlight: Issue in Hancom Office 2020 could lead to code execution
Cisco Talos Intelligence Group - Comprehensive Threat Intelligence blog.talosintelligence.com
Marcin “Icewall” Noga of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw.
Cisco Talos recently discovered an exploitable memory corruption vulnerability in Hancom Office 2020.
Hancom Office is a popular software collection among South Korean users that offers similar products to Microsoft Office, such as word processing and spreadsheet creation and management.
TALOS-2022-1574 (CVE-2022-33896) exists in the way the Hword word processing software processes XML files. An attacker could exploit this vulnerability by tricking the user into opening a …
code code execution office spotlight vulnerability vulnerability spotlight