Hangul Word Processor and PostScript Abused Via Malicious Attachments
Contents
Spam
HWP and PostScript Abused Via Malicious Attachments
Hangul Word Processor (HWP) is a word processing application in South Korea. It can run PostScript code, a language originally used for printing and desktop publishing. This ability is now being exploited in attacks involving malicious attachments.
Save to Folio
The Hangul Word Processor (HWP) is a word processing application which is fairly popular in South Korea. It possesses the ability to run PostScript code, which is a language originally used for printing and desktop publishing, although it is a fully capable language. Unfortunately, this ability is now being exploited in attacks involving malicious attachments.
A branch of PostScript called Encapsulated PostScript exists, which adds restrictions to the code that may be run. This is supposed to make opening these documents safer, but unfortunately older HWP versions implement these restrictions improperly. We have started seeing malicious attachments that contain malicious PostScript, which is in turn being used …
HWP and PostScript Abused Via Malicious Attachments
Hangul Word Processor (HWP) is a word processing application in South Korea. It can run PostScript code, a language originally used for printing and desktop publishing. This ability is now being exploited in attacks involving malicious attachments.
Save to Folio
The Hangul Word Processor (HWP) is a word processing application which is fairly popular in South Korea. It possesses the ability to run PostScript code, which is a language originally used for printing and desktop publishing, although it is a fully capable language. Unfortunately, this ability is now being exploited in attacks involving malicious attachments.
A branch of PostScript called Encapsulated PostScript exists, which adds restrictions to the code that may be run. This is supposed to make opening these documents safer, but unfortunately older HWP versions implement these restrictions improperly. We have started seeing malicious attachments that contain malicious PostScript, which is in turn being used …