About
Specialize in Reverse Engineering and research on real-world software vulnerability.
Member of CAT-Security, Catholic University of Korea
Vulnerability Reports
- 1gram player Buffer overflow vulnerability (2018)
- Daview Indy Muliple overflow vulnerability (2019)
- Total 16 vulnerabilities in .psd .j2k .bmp .pdf . jbig2 .jpc
- Assigned CVE-2019-9135, CVE-2019-9138
- Hancom Office 2018 Heap overflow vulnerability (2019)
- One-click Remote Code Execution
- Affected to Hancom Office 2018, NEO, 2014, 2010
- AhnLab V3 Lite Uninitialized stack variable vulnerability (2019)
- Terminate Real-time antivirus protection process
- Denial of service
- ezPDF Editor 3.0 out-of-boud write vulnerability (2019)
- One-click Remote Code Execution
- One-click Remote Code Execution
- Hancom Office 2020 integer overflow vulnerablility (2019)
- One-click Remote Code Execution
- One-click Remote Code Execution
- AhnLab Safe Transaction Local Privilege Escalation vulnerability (2020)
- Elevated to SYSTEM privileges
- Elevated to SYSTEM privileges
Awards
- HDCON Hacking Defense Competition 2017 - silver prize
- Republic of Korea Army Hacking Defense Competition 2018 - second place
- KISA(Korea Internet & Security Agency) Bug bounty program - second place (2019)
Work & Education Experiences
- Served in Defense Security Command (2018~2020)
- Trainee of KITRI Best of the Best (2020~)