CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,993 vulnerabilities with CWE-119
CVE-2017-15787 HIGH
XnView Classic 2.43 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15786 HIGH
XnView Classic 2.43 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15785 HIGH
XnView Classic 2.43 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15784 HIGH
XnView Classic 2.43 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15783 HIGH
XnView Classic 2.43 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15782 HIGH
XnView Classic 2.43 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15781 HIGH
XnView Classic 2.43 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15780 HIGH
XnView Classic 2.43 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15779 HIGH
XnView Classic 2.43 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15778 HIGH
XnView Classic 2.43 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15777 HIGH
XnView Classic 2.43 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15776 HIGH
XnView Classic 2.43 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15775 HIGH
XnView Classic 2.43 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15774 HIGH
XnView Classic 2.43 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15773 HIGH
XnView Classic 2.43 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15772 HIGH
XnView Classic 2.43 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15769 HIGH
IrfanView 4.50 - Denial of Service via Crafted DDS File
CVSS 7.8
CVE-2017-15768 HIGH
IrfanView 4.50 - Denial of Service via Crafted TIFF File
CVSS 7.8
CVE-2017-15767 HIGH
IrfanView with CADImage Plugin 12.0.0.5 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15766 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15765 HIGH
IrfanView with CADImage plugin 12.0.0.5 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15764 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15763 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15762 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15761 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Remote Code Execution via Crafted DWG File
CVSS 7.8
Details
Vulnerabilities 13,993
Exploit Likelihood High