CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,011 vulnerabilities with CWE-119
CVE-2014-0764
Advantech WebAccess < 7.1 - Remote Code Execution via NodeName Parameter Buffer Overflow
CVE-2014-0777
IOServer OPC Drivers < 1.0.20 - Denial of Service via Crafted Modbus Packet
CVE-2014-2141
Cisco ONS 15454 System Software <= 9.6 - Authenticated Denial of Service via Session Termination
CVE-2014-1760
Microsoft Internet Explorer 11 - Memory Corruption
CVE-2014-1758
Microsoft Word 2003 SP3 - Buffer Overflow
CVE-2014-1757
Microsoft Office Compatibility Pack and Word - Remote Code Execution via Crafted Document Conversion
CVE-2014-1755
Microsoft Internet Explorer 9 - Memory Corruption
CVE-2014-1753
Microsoft Internet Explorer <10 - Code Injection
CVE-2014-1752
Microsoft Internet Explorer <7 - Code Injection
CVE-2014-1751
Microsoft Internet Explorer 9 - Memory Corruption
CVE-2014-0507
Adobe Flash Player <11.7.700.275-13.0.0.182 - Buffer Overflow
CVE-2014-2543
TIBCO Rendezvous <8.4.2 - Buffer Overflow
CVE-2014-0789
Schneider Electric OPC Factory Server < 3.5 - Denial of Service via Long Arguments
CVE-2014-1313
Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via Memory Corruption
CVE-2014-1312
Apple Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via Memory Corruption
CVE-2014-1311
Apple Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via Memory Corruption
CVE-2014-1310
Apple Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via Memory Corruption
CVE-2014-1309
Apple Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1308
Apple Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via Memory Corruption
CVE-2014-1307
Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1305
Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via Memory Corruption
CVE-2014-1304
Apple Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1302
Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1301
Apple Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1299
Apple Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via WebKit Memory Corruption
Details
Vulnerabilities 14,011
Exploit Likelihood High