CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,993 vulnerabilities with CWE-119
CVE-2017-15760 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15759 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15758 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15757 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15756 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15755 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15754 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15753 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15752 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15751 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15750 HIGH
IrfanView with BabaCAD4Image Plugin 1.3 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15749 HIGH
IrfanView with CADImage Plugin - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15748 HIGH
IrfanView with CADImage Plugin 12.0.0.5 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15747 HIGH
IrfanView with CADImage plugin 12.0.0.5 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15746 HIGH
IrfanView with CADImage Plugin - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15745 HIGH
IrfanView with CADImage Plugin - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15744 HIGH
IrfanView 4.50 with CADImage Plugin 12.0.0.5 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15743 HIGH
IrfanView with CADImage Plugin 12.0.0.5 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15742 HIGH
IrfanView with CADImage Plugin 12.0.0.5 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15741 HIGH
IrfanView with CADImage Plugin 12.0.0.5 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15740 HIGH
IrfanView with CADImage Plugin 12.0.0.5 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15739 HIGH
IrfanView with CADImage Plugin 12.0.0.5 - Remote Code Execution via Crafted DWG File
CVSS 7.8
CVE-2017-15738 HIGH
IrfanView with CADImage Plugin 12.0.0.5 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15737 HIGH
IrfanView with CADImage Plugin 12.0.0.5 - Denial of Service via Crafted DWG File
CVSS 7.8
CVE-2017-15803 HIGH
XnView Classic 2.43 - Denial of Service via Crafted DLL Icon Rendering
CVSS 7.8
Details
Vulnerabilities 13,993
Exploit Likelihood High