CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,009 vulnerabilities with CWE-119
CVE-2015-3286
Solaris kernel extension <1.6.13 - Buffer Overflow
CVE-2015-3285
OpenAFS < 1.6.13 - Denial of Service via OSD FS Command Pioctl
CVE-2015-2059
libidn < 1.30 - Out-of-Bounds Read via Invalid UTF-8 Characters
CVE-2015-5523
Tidy <4.9.31 - DoS
CVE-2015-5522
htacg tidy < 4.9.30 - Heap-Based Buffer Overflow via href Command Character
CVE-2015-4935
IBM Tivoli Storage Manager FastBack < 6.1.12.1 - Remote Code Execution via Crafted Packet
CVE-2015-4934
IBM Tivoli Storage Manager FastBack < 6.1.12.1 - Remote Code Execution via Crafted Packet
CVE-2015-4933
IBM Tivoli Storage Manager FastBack 6.1 - Remote Code Execution via Crafted Packet
CVE-2015-4932
IBM Tivoli Storage Manager FastBack 6.1 - Remote Code Execution via Crafted Packet
CVE-2015-4931
IBM Tivoli Storage Manager FastBack < 6.1.12.1 - Remote Code Execution via Crafted Packet
CVE-2015-4290
Cisco AnyConnect Secure Mobility Client 4.0(2049) - Denial of Service via Contiguous Memory Access
CVE-2015-1872
Canonical Ubuntu Linux < 2.5.3 - Memory Corruption
CVE-2015-1280
Skia <44.0.2403.89 - Memory Corruption
CVE-2015-1273
OpenJPEG <r3002 - Buffer Overflow
CVE-2015-1271
PDFium <44.0.2403.89 - DoS
CVE-2015-2869
Ghisler Total Commander FileInfo Plugin < 2.22 - Denial of Service via COFF Archive or LE Header Parsing
CVE-2015-5124
Adobe AIR < 18.0.0.144 - Remote Code Execution via Memory Corruption
CVE-2015-2426 HIGH KEV
Windows Adobe Type Manager Library - RCE
CVSS 8.8
CVE-2015-0795
NetIQ Security Solutions for iSeries 8.1 - Remote Code Execution via SafeShellExecute Method
CVE-2015-5115
Adobe Acrobat and Reader Remote Code Execution and Denial of Service via Memory Corruption
CVE-2015-5104
Adobe Acrobat and Reader Remote Code Execution and Denial of Service via Memory Corruption
CVE-2015-5103
Adobe Acrobat and Reader Remote Code Execution or DoS via Memory Corruption
CVE-2015-5102
Adobe Acrobat/Reader Remote Code Execution/DoS via Memory Corruption
CVE-2015-5100
Adobe Acrobat and Reader Remote Code Execution and Denial of Service via Memory Corruption
CVE-2015-5094
Adobe Acrobat and Reader Remote Code Execution or DoS via Memory Corruption
Details
Vulnerabilities 14,009
Exploit Likelihood High