Specialize in Reverse Engineering and research on real-world software vulnerability.
Member of CAT-Security, Catholic University of Korea

Vulnerability Reports

  • 1gram player Buffer overflow vulnerability (2018)

  • Daview Indy Muliple overflow vulnerability (2019)
    • Total 16 vulnerabilities in .psd .j2k .bmp .pdf . jbig2 .jpc
    • Assigned CVE-2019-9135, CVE-2019-9138

  • Hancom Office 2018 Heap overflow vulnerability (2019)
    • One-click Remote Code Execution
    • Affected to Hancom Office 2018, NEO, 2014, 2010

  • AhnLab V3 Lite Uninitialized stack variable vulnerability (2019)
    • Terminate Real-time antivirus protection process
    • Denial of service

  • ezPDF Editor 3.0 out-of-boud write vulnerability (2019)
    • One-click Remote Code Execution

  • Hancom Office 2020 integer overflow vulnerablility (2019)
    • One-click Remote Code Execution

  • AhnLab Safe Transaction Local Privilege Escalation vulnerability (2020)
    • Elevated to SYSTEM privileges

Awards

  • HDCON Hacking Defense Competition 2017 - silver prize
  • Republic of Korea Army Hacking Defense Competition 2018 - second place
  • KISA(Korea Internet & Security Agency) Bug bounty program - second place (2019)

Work & Education Experiences

  • Served in Defense Security Command (2018~2020)
  • Trainee of KITRI Best of the Best (2020~)