CVE-2015-2810 - OpenCVE

Integer overflow in the HwpApp::CHncSDS_Manager function in Hancom Office HanWord processor, as used in Hwp 2014 VP before 9.1.0.2342, HanWord Viewer 2007 and Viewer 2010 8.5.6.1158, and HwpViewer 2014 VP 9.1.0.2186, allows remote attackers to cause a denial of service (crash) and possibly "influence the program's execution flow" via a document with a large paragraph size, which triggers heap corruption.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Hancom	Hanword Viewer 2007 Hanword Viewer 2010 Hwp 2014 Hwpviewer 2014

Configuration 1 [-]

OR	cpe:2.3:a:hancom:hanword_viewer_2007::::::::
	cpe:2.3:a:hancom:hanword_viewer_2010:8.5.6.1158:::::::*
	cpe:2.3:a:hancom:hwp_2014::::::::
	cpe:2.3:a:hancom:hwpviewer_2014:9.1.0.2186:::::::*

No data.

References

Link	Providers
http://seclists.org/bugtraq/2015/Apr/89
http://www.securityfocus.com/bid/74153

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2015-05-15T22:00:00

Updated: 2024-08-06T05:24:38.930Z

Reserved: 2015-03-31T00:00:00

Link: CVE-2015-2810

Vulnrichment

No data.

NVD

Status : Modified

Published: 2015-05-15T22:59:00.093

Modified: 2016-12-03T03:06:32.493

Link: CVE-2015-2810

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-04-13T00:00:00", "descriptions": [{"lang": "en", "value": "Integer overflow in the HwpApp::CHncSDS_Manager function in Hancom Office HanWord processor, as used in Hwp 2014 VP before 9.1.0.2342, HanWord Viewer 2007 and Viewer 2010 8.5.6.1158, and HwpViewer 2014 VP 9.1.0.2186, allows remote attackers to cause a denial of service (crash) and possibly \"influence the program's execution flow\" via a document with a large paragraph size, which triggers heap corruption."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-11-30T18:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20150413 [CVE-2015-2810] Integer Overflow leading to heap corruption when assigning a long paragraph size value to a HanWord document", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2015/Apr/89"}, {"name": "74153", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/74153"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2015-2810", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Integer overflow in the HwpApp::CHncSDS_Manager function in Hancom Office HanWord processor, as used in Hwp 2014 VP before 9.1.0.2342, HanWord Viewer 2007 and Viewer 2010 8.5.6.1158, and HwpViewer 2014 VP 9.1.0.2186, allows remote attackers to cause a denial of service (crash) and possibly \"influence the program's execution flow\" via a document with a large paragraph size, which triggers heap corruption."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20150413 [CVE-2015-2810] Integer Overflow leading to heap corruption when assigning a long paragraph size value to a HanWord document", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2015/Apr/89"}, {"name": "74153", "refsource": "BID", "url": "http://www.securityfocus.com/bid/74153"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T05:24:38.930Z"}, "title": "CVE Program Container", "references": [{"name": "20150413 [CVE-2015-2810] Integer Overflow leading to heap corruption when assigning a long paragraph size value to a HanWord document", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://seclists.org/bugtraq/2015/Apr/89"}, {"name": "74153", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/74153"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2015-2810", "datePublished": "2015-05-15T22:00:00", "dateReserved": "2015-03-31T00:00:00", "dateUpdated": "2024-08-06T05:24:38.930Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hancom:hanword_viewer_2007:*:*:*:*:*:*:*:*", "matchCriteriaId": "322BBEBD-4EB9-4A21-B54B-FC9391D1D308", "vulnerable": true}, {"criteria": "cpe:2.3:a:hancom:hanword_viewer_2010:8.5.6.1158:*:*:*:*:*:*:*", "matchCriteriaId": "57B710A2-CB13-451B-B75F-4B4B7726B51A", "vulnerable": true}, {"criteria": "cpe:2.3:a:hancom:hwp_2014:*:*:*:*:*:*:*:*", "matchCriteriaId": "69D17D28-EE81-4F0A-85F5-3B5FB7DA9A7E", "versionEndIncluding": "9.1.0.2342", "vulnerable": true}, {"criteria": "cpe:2.3:a:hancom:hwpviewer_2014:9.1.0.2186:*:*:*:*:*:*:*", "matchCriteriaId": "17DACEC4-3D44-4E5E-A4A5-923F70CD4F63", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Integer overflow in the HwpApp::CHncSDS_Manager function in Hancom Office HanWord processor, as used in Hwp 2014 VP before 9.1.0.2342, HanWord Viewer 2007 and Viewer 2010 8.5.6.1158, and HwpViewer 2014 VP 9.1.0.2186, allows remote attackers to cause a denial of service (crash) and possibly \"influence the program's execution flow\" via a document with a large paragraph size, which triggers heap corruption."}, {"lang": "es", "value": "Desbordamiento de enteros en la funci\u00f3n HwpApp::CHncSDS_Manager en el procesador Hancom Office HanWord, utilizado en Hwp 2014 VP anterior a 9.1.0.2342, HanWord Viewer 2007 y Viewer 2010 8.5.6.1158, y HwpViewer 2014 VP 9.1.0.2186, permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda) y posiblemente 'influir en el flujo de ejecuci\u00f3n del programa' a trav\u00e9s de un documento con un tama\u00f1o grande de p\u00e1rrafo, lo que provoca una corrupci\u00f3n de la memoria din\u00e1mica."}], "id": "CVE-2015-2810", "lastModified": "2016-12-03T03:06:32.493", "metrics": {"cvssMetricV2": [{"acInsufInfo": true, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-05-15T22:59:00.093", "references": [{"source": "cve@mitre.org", "url": "http://seclists.org/bugtraq/2015/Apr/89"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/74153"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-189"}], "source": "nvd@nist.gov", "type": "Primary"}]}