CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,012 vulnerabilities with CWE-119
CVE-2012-4424
glibc < 2.17 - Stack-based Buffer Overflow via Long String in strcoll_l
CVE-2012-4094
Cisco Unified Computing System - Denial of Service via Smart Call Home Message Forgery
CVE-2012-2624
Logica HotScan - Stack-based Buffer Overflow via Crafted Packet
CVE-2012-4081
Cisco Unified Computing System - Denial of Service via Invalid MCTools Parameters
CVE-2012-4083
Cisco Unified Computing System - Authenticated Denial of Service via Long String Values in Administrative Web Interface
CVE-2012-6349
Autonomy KeyView IDOL - Buffer Overflow in .mdb Parser
CVE-2012-6570
Huawei AR and S Series - Heap-Based Buffer Overflow via HTTP Response
CVE-2012-6569
Huawei AR and S Series - Stack-based Buffer Overflow via Long URI
CVE-2012-6568
Huawei UTPS 1.0 - Buffer Overflow via IDS_PLUGIN_NAME in Plugin Configuration File
CVE-2012-6558
HeavenTools PE Explorer 1.99 R6 - Heap-Based Buffer Overflow via Resource Section String Size
CVE-2012-6553
Resource Hacker 3.6.0.92 - Heap-Based Buffer Overflow via PE Resource Section String
CVE-2012-5947
IBM SPSS SamplePower 3.0 - Buffer Overflow in vsflex7l ActiveX Control
CVE-2012-5946
IBM SPSS SamplePower 3.0 - Buffer Overflow in c1sizer ActiveX Control via TabCaption
CVE-2012-5945
IBM SPSS SamplePower 3.0 - Remote Code Execution via Vsflex8l ActiveX Control Buffer Overflow
CVE-2012-4715
Rockwell Automation RSLinx Enterprise <9 - Buffer Overflow
CVE-2012-6129
Transmission < 2.74 - Stack-Based Buffer Overflow via Micro Transport Protocol Packets
CVE-2012-0553
MySQL 5.1.x < 5.1.68 and 5.5.x < 5.5.28 - Buffer Overflow in yaSSL
CVE-2012-4460
Apache Qpid < 0.20 - Denial of Service via Buffer Deserialization
CVE-2012-6026
Cisco Aironet Access Point Software <= 15.2 - Denial of Service via HTTP Profiler Buffer Mismanagement
CVE-2012-6128
OpenConnect < 4.08 - Denial of Service via Long Hostname, Path, or Cookie List
CVE-2012-6275
BigAntSoft BigAnt IM Message Server - Stack-Based Buffer Overflow via SCH or DUPF Request
CVE-2012-4708
3S CODESYS Gateway-Server <2.3.9.27 - Buffer Overflow
CVE-2012-6326
VMware vCenter Server 4.1-5.0 and vCSA 5.0 - Denial of Service via Large Log Entries
CVE-2012-5953
IBM WebSphere Message Broker 6.1-7.0 - Denial of Service via Crafted Query String
CVE-2012-6533
Symantec PGP Desktop and Encryption Desktop - Local Privilege Escalation via Buffer Overflow in pgpwded.sys
Details
Vulnerabilities
14,012
Exploit Likelihood
High