CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,011 vulnerabilities with CWE-119
CVE-2013-2864
Google Chrome < 27.0.1453.110 - Use-After-Free in PDF Functionality
CVE-2013-2863
Google Chrome <27.0.1453.110 - Memory Corruption
CVE-2013-2862
Skia <27.0.1453.110 - Memory Corruption
CVE-2013-2855
Google Chrome <27.0.1453.110 - Memory Corruption
CVE-2013-1210
Cisco NX-OS - Denial of Service via Crafted STUN Packets
CVE-2013-3557
Wireshark 1.6.x < 1.6.15 and 1.8.x < 1.8.7 - Denial of Service in ASN.1 BER Dissector
CVE-2013-3660
HIGH
KEV
Windows - Local Privilege Escalation via EPATHOBJ::pprFlattenRec Pointer Initialization
CVSS 7.8
CVE-2013-1022
Apple QuickTime < 7.7.4 - Remote Code Execution via Crafted MVHD Atoms
CVE-2013-1021
Apple QuickTime < 7.7.4 - Remote Code Execution via Crafted JPEG Data
CVE-2013-1019
Apple QuickTime < 7.7.4 - Remote Code Execution via Crafted Sorenson-Encoded Movie File
CVE-2013-1018
Apple QuickTime < 7.7.4 - Remote Code Execution via Crafted H.264 Movie File
CVE-2013-1017
Apple QuickTime < 7.7.4 - Remote Code Execution via Crafted Dref Atoms
CVE-2013-1016
Apple QuickTime < 7.7.4 - Remote Code Execution via Crafted H.263 Movie File
CVE-2013-1015
Apple QuickTime <7.7.4 - Memory Corruption
CVE-2013-0989
Apple QuickTime < 7.7.4 - Remote Code Execution via Crafted MP3 File
CVE-2013-0988
Apple QuickTime < 7.7.4 - Remote Code Execution via Crafted FPX File
CVE-2013-0986
Apple QuickTime < 7.7.4 - Remote Code Execution via Crafted Enof Atoms
CVE-2013-2845
Google Chrome <27.0.1453.93 - Memory Corruption
CVE-2013-2838
Google Chrome < 27.0.1453.93 - Denial of Service via Out-of-Bounds Read
CVE-2013-1000
Apple iTunes < 11.0.3 - Remote Code Execution via iTunes Store Browsing
CVE-2013-0999
Apple iTunes < 11.0.3 - Remote Code Execution via iTunes Store Browsing
CVE-2013-0145
Serva32 2.1.0 - Buffer Overflow via TFTP Read Request
CVE-2013-3341
Adobe Acrobat Reader < 9.5.5, 10.1.7, 11.0.03 - RCE and DoS via Memory Corruption
CVE-2013-3340
Adobe Reader/Acrobat <9.5.5,10.1.7,11.0.03 - Memory Corruption
CVE-2013-3339
Adobe Acrobat Reader < 9.5.5, 10.1.7, 11.0.03 - RCE and DoS via Memory Corruption
Details
Vulnerabilities
14,011
Exploit Likelihood
High