CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,011 vulnerabilities with CWE-119
CVE-2014-9418
Huawei eSpace Desktop <V200R001C03 - DoS
CVE-2014-9223
AllegroSoft RomPager - Buffer Overflow
CVE-2014-8138
Redhat Enterprise Linux - Memory Corruption
CVE-2014-7286
Symantec Deployment Solution <6.9 - Buffer Overflow
CVE-2014-9295
ntp < 4.2.8 - Remote Code Execution via Stack-Based Buffer Overflow
CVE-2014-9380
Ettercap 0.8.1 - Denial of Service via CVS Packet Dissection
CVE-2014-9379
Ettercap 0.8.1 - Stack-Based Buffer Overflow in Radius Get Attribute Function
CVE-2014-9377
Ettercap 0.8.1 - Heap-Based Buffer Overflow via Large NetBIOS Packet
CVE-2014-6396
Ettercap < 0.8.0 - Denial of Service and Possible Remote Code Execution via Crafted PostgreSQL Password Length
CVE-2014-6395
Ettercap < 0.8.0 - Heap-Based Buffer Overflow via PostgreSQL Password Length
CVE-2014-7249
Allied Telesis AR/AT/CentreCOM/Rapier/SwitchBlade Firmware < 2.9.1-20 - Remote Code Execution via HTTP POST
CVE-2014-8964
PCRE < 8.36 - Heap-Based Buffer Overflow via Zero Repeat Assertion
CVE-2014-3583
Apple Mac OS X - Memory Corruption
CVE-2014-8269
Honeywell OPOS Suite < 1.13.4.14 - Remote Code Execution via Crafted File in Open Method
CVE-2014-8956
K7 Computing <12.8.0.119 - Buffer Overflow
CVE-2014-7136
K7FWFilt.sys <14.0.1.16 - Buffer Overflow
CVE-2014-9264
SAP SQL Anywhere - Stack-based Buffer Overflow via Crafted Column Alias
CVE-2014-1593
Firefox < 31.2, SeaMonkey < 2.30, Thunderbird < 31.2 - Remote Code Execution via Crafted Media Content
CVE-2014-6374
Microsoft Internet Explorer <11 - Code Injection
CVE-2014-6366
Microsoft Internet Explorer <7 - Code Injection
CVE-2014-6330
Microsoft Internet Explorer 9 - Memory Corruption
CVE-2014-6329
Microsoft Internet Explorer 11 - Memory Corruption
CVE-2014-8460
Adobe Acrobat Reader 10.x < 10.1.13 and 11.x < 11.0.10 - Remote Code Execution
CVE-2014-8457
Adobe Acrobat and Reader 10.x < 10.1.13 and 11.x < 11.0.10 - Remote Code Execution
CVE-2014-8103
X.Org Server 1.15.0-1.16.x - Authenticated Memory Corruption via DRI3 or Present Extension
Details
Vulnerabilities
14,011
Exploit Likelihood
High