CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,011 vulnerabilities with CWE-119
CVE-2013-7049
ZNC for Windows (znc-msvc) < 0.206 - Stack-based Buffer Overflow via Fish Plugin DH1080_INIT Message
CVE-2013-7186
Steinberg MyMp3PRO 5.0 Build 5.1.0.21 - Buffer Overflow via Long String in .m3u File
CVE-2013-6767
Quick Heal AntiVirus Pro 7.0.0.1 - Local Buffer Overflow via PE File Text Value
CVE-2013-7114
Wireshark <1.8.12, <1.10.4 - Buffer Overflow
CVE-2013-7100
Asterisk Open Source <1.8.24.1-11.6.1 - DoS
CVE-2013-6877
RealPlayer < 17.0.4.61 (Windows) and < 12.0.1.1738 (Mac) - Remote Code Execution via RMP TRACKID Element
CVE-2013-6836
GNOME Gnumeric < 1.12.9 - Heap-Based Buffer Overflow via Crafted XLS File
CVE-2013-5415
IBM Rational ClearCase <8.0.0.9 - Buffer Overflow
CVE-2013-5228
iTunes < 12.0 - Remote Code Execution via Memory Corruption
CVE-2013-5225
Safari < 6.1 - Remote Code Execution via Memory Corruption
CVE-2013-5199
Apple Safari WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2013-5198
Apple Safari < 6.1 - Remote Code Execution via Memory Corruption
CVE-2013-5197
Apple Safari < 6.1 - Remote Code Execution via Memory Corruption
CVE-2013-5196
iTunes < 12.0 - Remote Code Execution via Memory Corruption
CVE-2013-5195
Apple Safari WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2013-6038
Trimble SketchUp Viewer 13.0.4124 - Stack-Based Buffer Overflow via Crafted SKP File
CVE-2013-6420
PHP < 5.3.28, 5.4.x < 5.4.23, 5.5.x < 5.5.7 - Remote Code Execution via X.509 Certificate Timestamp Parsing
CVE-2013-7105
Fujitsu Interstage - Buffer Overflow
CVE-2013-6411
OpenTTD 0.3.6-1.3.2 - Denial of Service via Aircraft Crash Outside Map
CVE-2013-7039
libmicrohttpd < 0.9.32 - Stack-Based Buffer Overflow via Long URI in Authentication Header
CVE-2013-7038
libmicrohttpd < 0.9.32 - Denial of Service via Out-of-Bounds Read in MHD_http_unescape
CVE-2013-4988
IcoFX < 2.5 - Remote Code Execution via Long idCount in ICONDIR Structure
CVE-2013-6054
OpenJPEG < 1.3 - Heap-Based Buffer Overflow
CVE-2013-6045
OpenJPEG < 1.3 - Remote Code Execution via Heap-Based Buffer Overflow
CVE-2013-4458
glibc < 2.18 - Stack-based Buffer Overflow in getaddrinfo
Details
Vulnerabilities
14,011
Exploit Likelihood
High