CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,998 vulnerabilities with CWE-119
CVE-2017-1105 HIGH
IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, 11.1 - Buffer Overflow
CVSS 7.1
CVE-2017-9220 MEDIUM
Freeware Advanced Audio Decoder 2 <2.7 - DoS
CVSS 5.5
CVE-2017-9219 MEDIUM
Freeware Advanced Audio Decoder 2 <2.7 - DoS
CVSS 5.5
CVE-2017-9948 HIGH
Microsoft Skype 7.2-7.36 - Stack Buffer Overflow via RDP Clipboard Content
CVSS 8.8
CVE-2017-9937 MEDIUM
libtiff < 4.0.8 - Denial of Service via Crafted TIFF Document
CVSS 6.5
CVE-2017-9929 MEDIUM
long_range_zip 0.631 - Stack Buffer Overflow in get_fileinfo Function
CVSS 5.5
CVE-2017-9928 MEDIUM
long_range_zip 0.631 - Denial of Service via Stack Buffer Overflow in get_fileinfo
CVSS 5.5
CVE-2017-6669 HIGH
Cisco WebEx Network Recording Player - Buffer Overflow via Malicious ARF File
CVSS 7.8
CVE-2017-9872 HIGH
LAME 3.99.5 - Stack-Based Buffer Overflow in III_dequantize_sample
CVSS 7.8
CVE-2017-9871 HIGH
LAME 3.99.5 - Stack-Based Buffer Overflow in III_i_stereo Function
CVSS 7.8
CVE-2017-9775 MEDIUM
poppler < 0.56 - Denial of Service via Stack Buffer Overflow in GfxState.cc
CVSS 6.5
CVE-2017-3631 MEDIUM
Oracle Sun Systems Products Suite 11 - Privilege Escalation
CVSS 5.3
CVE-2017-3629 HIGH
Oracle Sun Systems Products Suite Kernel - Takeover
CVSS 7.8
CVE-2017-1304 MEDIUM
IBM Spectrum Scale/GPFS - Memory Corruption
CVSS 6.2
CVE-2017-3096 CRITICAL
Adobe Digital Editions <= 4.5.4 - Memory Corruption in Character Code Mapping Module
CVSS 9.8
CVE-2017-3095 CRITICAL
Adobe Digital Editions <= 4.5.4 - Memory Corruption in PDF Parsing Engine
CVSS 9.8
CVE-2017-3094 CRITICAL
Adobe Digital Editions <= 4.5.4 - Memory Corruption in PDF Processing Engine
CVSS 9.8
CVE-2017-3093 CRITICAL
Adobe Digital Editions <= 4.5.4 - Memory Corruption in Bitmap Representation Module
CVSS 9.8
CVE-2017-3089 CRITICAL
Adobe Digital Editions <= 4.5.4 - Memory Corruption in PDF Imaging Model
CVSS 9.8
CVE-2017-3088 CRITICAL
Adobe Digital Editions <= 4.5.4 - Memory Corruption in PDF Runtime Engine
CVSS 10.0
CVE-2017-3086 CRITICAL
Adobe Shockwave <= 12.2.8.198 - Memory Corruption
CVSS 9.8
CVE-2017-3082 CRITICAL
Adobe Flash Player <= 25.0.0.171 - Memory Corruption in LocaleID Class
CVSS 9.8
CVE-2017-3079 CRITICAL
Adobe Flash Player <= 25.0.0.171 - Memory Corruption in Raster Data Representation
CVSS 9.8
CVE-2017-3078 CRITICAL
Adobe Flash Player <= 25.0.0.171 - Memory Corruption in ATF Module
CVSS 9.8
CVE-2017-3077 CRITICAL
Adobe Flash Player <= 25.0.0.171 - Memory Corruption in PNG Image Parser
CVSS 9.8
Details
Vulnerabilities 13,998
Exploit Likelihood High