CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,008 vulnerabilities with CWE-119
CVE-2015-5815
Safari < 8.0.8 and iTunes < 12.2 - Remote Code Execution via WebKit Memory Corruption
CVE-2015-5814
Apple WebKit JavaScriptCore - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5813
iTunes < 12.3 - Remote Code Execution via Crafted Web Site
CVE-2015-5812
Apple WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5811
Safari < 8.0.8 - Remote Code Execution via Memory Corruption
CVE-2015-5810
Apple WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5809
WebKit in iPhone OS < 8.4.1, iTunes < 12.2, and Safari < 8.0.8 - Remote Code Execution via Crafted Web Site
CVE-2015-5808
Safari < 8.0.8 and iTunes < 12.2 - Remote Code Execution via WebKit Memory Corruption
CVE-2015-5807
Safari < 8.0.8 - Remote Code Execution via Crafted Web Site
CVE-2015-5806
Apple WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5805
Safari < 8.0.8 - Remote Code Execution via Memory Corruption
CVE-2015-5804
iTunes < 12.3 - Remote Code Execution via Crafted Web Site
CVE-2015-5803
iPhone OS < 8.4.1, iTunes < 12.2, Safari < 8.0.8 - Remote Code Execution via Memory Corruption
CVE-2015-5802
iPhone OS < 8.4.1 - Remote Code Execution via WebKit Memory Corruption
CVE-2015-5801
iTunes < 12.3 - Remote Code Execution via Crafted Web Site
CVE-2015-5800
Safari < 8.0.8 - Remote Code Execution via Memory Corruption
CVE-2015-5799
Apple WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5798
Apple iTunes < 12.3 - Remote Code Execution via iTunes Store Browsing
CVE-2015-5797
iPhone OS < 8.4.1 - Remote Code Execution via Crafted Web Site
CVE-2015-5796
Safari < 8.0.8 - Remote Code Execution via Memory Corruption
CVE-2015-5795
Safari < 8.0.8 - Remote Code Execution via Memory Corruption
CVE-2015-5794
Apple WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5793
Apple WebKit JavaScriptCore - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5792
iTunes < 12.3 - Remote Code Execution via Crafted Web Site
CVE-2015-5791
iPhone OS < 8.4.1 - Remote Code Execution via WebKit Memory Corruption
Details
Vulnerabilities 14,008
Exploit Likelihood High