CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,011 vulnerabilities with CWE-119
CVE-2014-1298
Apple Safari < 6.1.3 and 7.x < 7.0.3 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1892
Xen 3.3-4.1 - Denial of Service via Large Memory Allocation
CVE-2014-2671
Microsoft Windows Media Player 11.0.5721.5230 - Memory Corruption
CVE-2014-0065
PostgreSQL <8.4.20, <9.0.16, <9.1.12, <9.2.7, <9.3.3 - Buffer Overflow
CVE-2014-0063
PostgreSQL Stack-Based Buffer Overflow via Datetime Values
CVE-2014-2525
LibYAML < 0.1.6 - Heap-Based Buffer Overflow via Percent-Encoded URI
CVE-2014-0511
Adobe Reader 11.0.06 - Remote Code Execution via Heap-Based Buffer Overflow
CVE-2014-0510
Adobe Flash Player 12.0.0.77 - Remote Code Execution via Heap-Based Buffer Overflow
CVE-2014-1303
Apple Safari 7.0.2 - Remote Code Execution via Heap-Based Buffer Overflow
CVE-2014-0879
IBM Datacap Taskmaster Capture 8.0.1 and 8.1 - Stack-based Buffer Overflow
CVE-2014-0829
IBM Rational ClearCase 7.x < 7.1.2.13, 8.0.0.x < 8.0.0.10, 8.0.1.x < 8.0.1.3 - Authenticated Buffer Overflow
CVE-2014-1493
CRITICAL
Mozilla Firefox < 28.0 - Remote Code Execution via Browser Engine Memory Corruption
CVSS 9.8
CVE-2014-2087
Free Download Manager <3.9.3-3.0 - Buffer Overflow
CVE-2014-1711
Google Chrome OS <33.0.1750.152 - DoS
CVE-2014-1710
Google Chrome < 33.0.1750.152 - DoS
CVE-2014-0895
IBM SPSS SamplePower 3.0.1 - Buffer Overflow via vsflex8l ActiveX ComboList Property
CVE-2014-2270
file < 5.17 - Denial of Service via Crafted PE Executable Softmagic Offsets
CVE-2014-0467
Mutt < 1.5.23 - Denial of Service via RFC2047 Header Line Buffer Overflow
CVE-2014-1294
tvOS < 6.0.2 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1293
Apple tvOS < 6.0.2 and iPhone OS < 7.0.6 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1292
iPhone OS < 7.1 and tvOS < 6.1 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1291
Apple tvOS < 6.0.2 and iPhone OS < 7.0.6 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1290
iPhone OS < 7.1 and tvOS < 6.1 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1289
iPhone OS < 7.1 and tvOS < 6.1 - Remote Code Execution via WebKit Memory Corruption
CVE-2014-1287
Apple iOS < 7.1 and tvOS < 6.1 - Memory Corruption via USB Host
Details
Vulnerabilities
14,011
Exploit Likelihood
High