CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,012 vulnerabilities with CWE-119
CVE-2012-4607
EMC NetWorker <8.0.0.6 - Buffer Overflow
CVE-2012-5157
Google Chrome < 24.0.1312.52 - Denial of Service via PDF Image Data Handling
CVE-2012-5153
Google Chrome < 24.0.1312.52 - Remote Code Execution via V8 Stack Memory Access
CVE-2012-5152
Google Chrome <24.0.1312.52 - DoS
CVE-2012-1530
Adobe Acrobat and Reader 9.x-10.x - Heap-based Buffer Overflow in XSLT Engine via lang Function
CVE-2012-5581
libtiff < 4.0.2 - Stack-based Buffer Overflow via DOTRANGE Tag
CVE-2012-5977
Asterisk < 1.8.19.0, 10.x < 10.11.1, 11.x < 11.1.2 - Denial of Service via Anonymous Call Device State Cache Flooding
CVE-2012-6090
SWI-Prolog < 6.2.4 - Stack-Based Buffer Overflow via Crafted Filename
CVE-2012-6089
SWI-Prolog < 6.2.5 and 6.3.x < 6.3.7 - Stack-Based Buffer Overflow in canoniseFileName
CVE-2012-5976
Asterisk < 1.8.19.0 - Denial of Service via TCP Data in SIP, HTTP, or XMPP Protocol
CVE-2012-6470
Opera < 12.12 - Remote Code Execution via Malformed GIF Image
CVE-2012-6468
Opera < 12.11 - Remote Code Execution via Long HTTP Response
CVE-2012-0432
NetIQ eDirectory <8.8.7.2 - Buffer Overflow
CVE-2012-3133
DataDirect ODBC driver - Buffer Overflow
CVE-2012-1699
X.Org X11 and XFree86 < 3.3.2 - Denial of Service via SetEventMask Request
CVE-2012-0882
MySQL 5.5.x < 5.5.22 and 5.1.x < 5.1.62 - Remote Code Execution via yaSSL Buffer Overflow
CVE-2012-5691
RealNetworks RealPlayer <16.0.0.282-1.1.5 - RCE
CVE-2012-5468
Bogofilter <1.2.3 - Buffer Overflow
CVE-2012-5195
Perl <5.12.5-5.14.3-5.15.5 - Buffer Overflow
CVE-2012-5680
Adobe Photoshop Camera Raw <7.3 - RCE
CVE-2012-5679
Adobe Photoshop Camera Raw <7.3 - RCE
CVE-2012-5511
Xen 3.4-4.1 - Denial of Service via Dirty Video RAM Tracking Buffer Overflow
CVE-2012-5678
Adobe Flash Player <10.3.183.48,11.x <11.5.502.135 - RCE
CVE-2012-5676
Adobe Flash Player <10.3.183.48,11.x <11.5.502.135 - Buffer Overflow
CVE-2012-5144
Google Chrome <23.0.1271.97 & Libav 0.7.x<0.7.7 & 0.8.x<0.8.5 - DoS
Details
Vulnerabilities 14,012
Exploit Likelihood High