CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,011 vulnerabilities with CWE-119
CVE-2015-1930
IBM Tivoli Storage Manager FastBack < 6.1.12 - Stack-Based Buffer Overflow
CVE-2015-1929
IBM Tivoli Storage Manager FastBack < 6.1.12 - Stack-based Buffer Overflow
CVE-2015-1925
IBM Tivoli Storage Manager FastBack < 6.1.12 - Stack-based Buffer Overflow
CVE-2015-1924
IBM Tivoli Storage Manager FastBack < 6.1.12 - Stack-based Buffer Overflow
CVE-2015-1923
IBM Tivoli Storage Manager FastBack 6.1 - Denial of Service via Buffer Overflow
CVE-2015-3112
Adobe Photoshop CC <16.0 - Memory Corruption
CVE-2015-3111
Adobe Photoshop CC <16.0 - Buffer Overflow
CVE-2015-3109
Adobe Photoshop CC <16.0 - Memory Corruption
CVE-2015-4590
ArduinoJson < 4.4 - Denial of Service via Malformed JSON String
CVE-2015-4675
TinySRP < 0.7.5 - Buffer Overflow via Username Field Size Value
CVE-2015-2797
AirTies Air Firmware < 1.0.2.0 - Remote Code Execution via Long Redirect Parameter
CVE-2015-3317
CA Common Services - Privilege Escalation
CVE-2015-3395
Libav <10.7,11.x <11.4 - Remote Code Execution
CVE-2015-4144
Opensuse - Memory Corruption
CVE-2015-4143
wpa_supplicant and hostapd 1.0-2.4 - Denial of Service via EAP-pwd Commit or Confirm Message Payload
CVE-2015-4142
wpa_supplicant 0.7.0-2.4 - Denial of Service via WMM Action Frame Integer Underflow
CVE-2015-4141
wpa_supplicant 0.7.0-2.4 and hostapd 0.7.0-2.4 - Denial of Service via Negative Chunk Length in WPS UPnP
CVE-2015-1789
HIGH
OpenSSL < 0.9.8zg, 1.0.0 < 1.0.0s, 1.0.1 < 1.0.1n, 1.0.2 < 1.0.2b - Denial of Service via ASN1_TIME Length Field
CVSS 7.5
CVE-2015-4469
libmspack < 0.4-3 - Denial of Service via CHM File Name Length Mismatch
CVE-2015-3105
Adobe Flash Player Drawing Fill Shader Memory Corruption
CVE-2015-3100
Adobe Flash Player <13.0.0.292-18.0.0.160, Adobe AIR <18.0.0.144 - ...
CVE-2015-2360
HIGH
KEV
Windows Kernel win32k.sys - Local Privilege Escalation via Memory Corruption
CVSS 8.8
CVE-2015-1768
Windows Server 2003 SP2 and R2 SP2 - Local Privilege Escalation via Win32k Memory Corruption
CVE-2015-1727
Windows Kernel-Mode Drivers - Local Privilege Escalation via Buffer Overflow
CVE-2015-1725
Microsoft Windows - Local Privilege Escalation via Kernel-Mode Driver Buffer Overflow
Details
Vulnerabilities
14,011
Exploit Likelihood
High