CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,011 vulnerabilities with CWE-119
CVE-2014-0582
Adobe Flash Player 13.0-13.0.0.251 and 14.x-15.x < 15.0.0.223 - Remote Code Execution
CVE-2014-6332
HIGH
KEV
Microsoft Windows - Remote Code Execution via SafeArrayDimen Function
CVSS 8.8
CVE-2014-8369
HIGH
Linux Kernel < 3.17.2 - Denial of Service via KVM IOMMU Mapping Failure
CVSS 7.8
CVE-2014-8548
FFmpeg < 2.4.2 - Denial of Service via Crafted Quicktime Graphics Video Data
CVE-2014-8547
Canonical Ubuntu Linux < 2.4.1 - Memory Corruption
CVE-2014-8542
FFmpeg < 2.4.2 - Denial of Service via Crafted JV Data
CVE-2014-8541
Canonical Ubuntu Linux < 2.4.1 - Memory Corruption
CVE-2014-3461
QEMU 1.6.2 - Remote Code Execution via Crafted SaveVM Data
CVE-2014-0182
QEMU < 1.7.2 - Heap-Based Buffer Overflow via Crafted Config Length in SaveVM Image
CVE-2014-5272
FFmpeg < 1.1.14, 1.2.x < 1.2.8, 2.2.x < 2.2.7, 2.3.x < 2.3.2 - Out-of-Bounds Array Access via Crafted IFF Image
CVE-2014-5271
FFmpeg < 1.1.14, 1.2.x < 1.2.8, 2.x < 2.2.7, 2.3.x < 2.3.3 - Heap-based Buffer Overflow in encode_slice
CVE-2014-3634
sysklogd <= 1.5 and rsyslog < 7.6.6 - Denial of Service via Crafted Priority Value
CVE-2014-2015
FreeRADIUS <2.2.3-3.0.1 - Buffer Overflow
CVE-2014-8509
BitTorrent bootstrap-dht - Remote Code Execution via Crafted Packet
CVE-2014-3696
Pidgin < 2.10.10 - Denial of Service via Novell GroupWise Protocol Plugin
CVE-2014-3695
Pidgin < 2.10.10 - Denial of Service via MXit Emoticon Response Length
CVE-2014-3670
PHP < 5.4.34 - Heap Memory Corruption via EXIF Thumbnail Processing
CVE-2014-3668
PHP < 5.4.34 - Buffer Overflow in XMLRPC Extension via Crafted Arguments
CVE-2014-3954
FreeBSD <10.1-RC2 - Buffer Overflow
CVE-2014-5148
Xen 4.4.x - Denial of Service via ARM System Register Access
CVE-2014-6251
cpuminer < 2.4.0 - Stack-based Buffer Overflow via Mining Protocol Messages
CVE-2014-3564
GPGME < 1.5.1 - Heap-Based Buffer Overflow in Status Handler
CVE-2014-4436
Apple macOS X < 10.9.5 - Denial of Service via IOHIDFamily Out-of-Bounds Read
CVE-2014-4433
Apple OS X <10.10 - Buffer Overflow
CVE-2014-4351
macOS < 10.9.5 - Remote Code Execution via Crafted Audio Samples in m4a File
Details
Vulnerabilities
14,011
Exploit Likelihood
High