o TmaxSoft Co., Ltd released security update to address Improper Input Validation vulnerability in ToOffice.
|Improper Input Validation
||Arbitrary file creation
o An improper input validation leading to arbitrary file creation was discovered in ToWord of ToOffice.
o Remote attackers use this vulnerability to execute arbitrary file included malicious code.
□ Affected Product
||prior of 3.15.5
o Update software over ToOffice 3.15.6 version or higher.
o Thanks to Shin Jae Wook for reporting this vulnerability.
□ 작성 : 침해사고분석단 취약점분석팀