o HumanTalk Co,Ltd release security update to address a Heap Overflow vulnerability in Architectural Information System.
o DaviewIndy has a Heap-based overflow vulnerability, triggered when the user opens a malformed ex.j2c format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.(CVE-2020-7852)
□ Affected Product
||9.0 or lower
o Update software over DaviewIndy 9.02 version or higher.
o Thanks to Gyeongyeong Choi for reporting these vulnerabilities.
□ 작성 : 침해사고분석단 취약점분석팀