CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,011 vulnerabilities with CWE-119
CVE-2013-3354
Adobe Reader/Acrobat <10.1.8 & 11.x <11.0.04 - Memory Corruption
CVE-2013-3353
Adobe Reader/Acrobat <10.1.8/11.0.04 - Buffer Overflow
CVE-2013-3352
Adobe Reader/Acrobat <10.1.8 & 11.x <11.0.04 - Memory Corruption
CVE-2013-3351
Adobe Reader/Acrobat <10.1.8, 11.x <11.0.04 - Buffer Overflow
CVE-2013-3866
Windows win32k.sys - Local Privilege Escalation via Crafted Application
CVE-2013-3865
Windows win32k.sys - Local Privilege Escalation via Multiple Fetch
CVE-2013-3864
Windows win32k.sys - Local Privilege Escalation via Crafted Application
CVE-2013-3863
Windows XP SP2-SP3 and Server 2003 SP2 - Remote Code Execution via Crafted OLE Object
CVE-2013-3858
Microsoft Office Compatibility Pack - Remote Code Execution via Crafted Office Document
CVE-2013-3857
Microsoft Word Automation Services - Remote Code Execution via Crafted Office Document
CVE-2013-3856
Microsoft Word 2003 SP3 and Word Viewer - Remote Code Execution via Crafted Office Document
CVE-2013-3855
Microsoft Office Compatibility Pack - Remote Code Execution via Crafted Office Document
CVE-2013-3854
Microsoft Office 2007 SP3 and Word 2007 SP3 - Remote Code Execution via Crafted Office Document
CVE-2013-3853
Microsoft Office 2007 SP3 and Word 2007 SP3 - Remote Code Execution via Crafted Office Document
CVE-2013-3852
Microsoft Office Compatibility Pack - Remote Code Execution via Crafted Office Document
CVE-2013-3851
Microsoft Office Compatibility Pack - Remote Code Execution via Crafted Office Document
CVE-2013-3850
Microsoft Office Compatibility Pack - Remote Code Execution via Crafted Office Document
CVE-2013-3849
Microsoft Office Compatibility Pack - Remote Code Execution via Crafted Office Document
CVE-2013-3848
Microsoft Office Web Apps - Remote Code Execution via Crafted Office Document
CVE-2013-3847
Microsoft Word Automation Services in SharePoint Server 2010 SP1 - Remote Code Execution via Crafted Office Document
CVE-2013-3845
Microsoft Internet Explorer 8 and 9 - Remote Code Execution via Memory Corruption
CVE-2013-3209
Microsoft Internet Explorer 9-10 - Memory Corruption
CVE-2013-3208
Microsoft Internet Explorer <10 - Code Injection
CVE-2013-3207
Microsoft Internet Explorer 9-10 - Memory Corruption
CVE-2013-3206
Microsoft Internet Explorer 9-10 - Memory Corruption
Details
Vulnerabilities
14,011
Exploit Likelihood
High