CVE-2015-2810 (GCVE-0-2015-2810)

Vulnerability from cvelistv5 – Published: 2015-05-15 22:00 – Updated: 2024-08-06 05:24
VLAI?
Summary
Integer overflow in the HwpApp::CHncSDS_Manager function in Hancom Office HanWord processor, as used in Hwp 2014 VP before 9.1.0.2342, HanWord Viewer 2007 and Viewer 2010 8.5.6.1158, and HwpViewer 2014 VP 9.1.0.2186, allows remote attackers to cause a denial of service (crash) and possibly "influence the program's execution flow" via a document with a large paragraph size, which triggers heap corruption.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://seclists.org/bugtraq/2015/Apr/89 mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/bid/74153 vdb-entryx_refsource_BID
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T05:24:38.930Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20150413 [CVE-2015-2810] Integer Overflow leading to heap corruption when assigning a long paragraph size value to a HanWord document",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://seclists.org/bugtraq/2015/Apr/89"
          },
          {
            "name": "74153",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/74153"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-04-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Integer overflow in the HwpApp::CHncSDS_Manager function in Hancom Office HanWord processor, as used in Hwp 2014 VP before 9.1.0.2342, HanWord Viewer 2007 and Viewer 2010 8.5.6.1158, and HwpViewer 2014 VP 9.1.0.2186, allows remote attackers to cause a denial of service (crash) and possibly \"influence the program\u0027s execution flow\" via a document with a large paragraph size, which triggers heap corruption."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-11-30T18:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "20150413 [CVE-2015-2810] Integer Overflow leading to heap corruption when assigning a long paragraph size value to a HanWord document",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://seclists.org/bugtraq/2015/Apr/89"
        },
        {
          "name": "74153",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/74153"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2015-2810",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Integer overflow in the HwpApp::CHncSDS_Manager function in Hancom Office HanWord processor, as used in Hwp 2014 VP before 9.1.0.2342, HanWord Viewer 2007 and Viewer 2010 8.5.6.1158, and HwpViewer 2014 VP 9.1.0.2186, allows remote attackers to cause a denial of service (crash) and possibly \"influence the program\u0027s execution flow\" via a document with a large paragraph size, which triggers heap corruption."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20150413 [CVE-2015-2810] Integer Overflow leading to heap corruption when assigning a long paragraph size value to a HanWord document",
              "refsource": "BUGTRAQ",
              "url": "http://seclists.org/bugtraq/2015/Apr/89"
            },
            {
              "name": "74153",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/74153"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2015-2810",
    "datePublished": "2015-05-15T22:00:00",
    "dateReserved": "2015-03-31T00:00:00",
    "dateUpdated": "2024-08-06T05:24:38.930Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hancom:hanword_viewer_2007:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"322BBEBD-4EB9-4A21-B54B-FC9391D1D308\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hancom:hanword_viewer_2010:8.5.6.1158:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"57B710A2-CB13-451B-B75F-4B4B7726B51A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hancom:hwp_2014:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"9.1.0.2342\", \"matchCriteriaId\": \"69D17D28-EE81-4F0A-85F5-3B5FB7DA9A7E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:hancom:hwpviewer_2014:9.1.0.2186:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"17DACEC4-3D44-4E5E-A4A5-923F70CD4F63\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Integer overflow in the HwpApp::CHncSDS_Manager function in Hancom Office HanWord processor, as used in Hwp 2014 VP before 9.1.0.2342, HanWord Viewer 2007 and Viewer 2010 8.5.6.1158, and HwpViewer 2014 VP 9.1.0.2186, allows remote attackers to cause a denial of service (crash) and possibly \\\"influence the program\u0027s execution flow\\\" via a document with a large paragraph size, which triggers heap corruption.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de enteros en la funci\\u00f3n HwpApp::CHncSDS_Manager en el procesador Hancom Office HanWord, utilizado en Hwp 2014 VP anterior a 9.1.0.2342, HanWord Viewer 2007 y Viewer 2010 8.5.6.1158, y HwpViewer 2014 VP 9.1.0.2186, permite a atacantes remotos causar una denegaci\\u00f3n de servicio (ca\\u00edda) y posiblemente \u0027influir en el flujo de ejecuci\\u00f3n del programa\u0027 a trav\\u00e9s de un documento con un tama\\u00f1o grande de p\\u00e1rrafo, lo que provoca una corrupci\\u00f3n de la memoria din\\u00e1mica.\"}]",
      "id": "CVE-2015-2810",
      "lastModified": "2024-11-21T02:28:07.700",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": true, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2015-05-15T22:59:00.093",
      "references": "[{\"url\": \"http://seclists.org/bugtraq/2015/Apr/89\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/74153\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://seclists.org/bugtraq/2015/Apr/89\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/74153\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-189\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2015-2810\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2015-05-15T22:59:00.093\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Integer overflow in the HwpApp::CHncSDS_Manager function in Hancom Office HanWord processor, as used in Hwp 2014 VP before 9.1.0.2342, HanWord Viewer 2007 and Viewer 2010 8.5.6.1158, and HwpViewer 2014 VP 9.1.0.2186, allows remote attackers to cause a denial of service (crash) and possibly \\\"influence the program\u0027s execution flow\\\" via a document with a large paragraph size, which triggers heap corruption.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de enteros en la funci\u00f3n HwpApp::CHncSDS_Manager en el procesador Hancom Office HanWord, utilizado en Hwp 2014 VP anterior a 9.1.0.2342, HanWord Viewer 2007 y Viewer 2010 8.5.6.1158, y HwpViewer 2014 VP 9.1.0.2186, permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda) y posiblemente \u0027influir en el flujo de ejecuci\u00f3n del programa\u0027 a trav\u00e9s de un documento con un tama\u00f1o grande de p\u00e1rrafo, lo que provoca una corrupci\u00f3n de la memoria din\u00e1mica.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-189\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hancom:hanword_viewer_2007:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"322BBEBD-4EB9-4A21-B54B-FC9391D1D308\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hancom:hanword_viewer_2010:8.5.6.1158:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57B710A2-CB13-451B-B75F-4B4B7726B51A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hancom:hwp_2014:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"9.1.0.2342\",\"matchCriteriaId\":\"69D17D28-EE81-4F0A-85F5-3B5FB7DA9A7E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:hancom:hwpviewer_2014:9.1.0.2186:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17DACEC4-3D44-4E5E-A4A5-923F70CD4F63\"}]}]}],\"references\":[{\"url\":\"http://seclists.org/bugtraq/2015/Apr/89\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/74153\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://seclists.org/bugtraq/2015/Apr/89\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/74153\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.