CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,014 vulnerabilities with CWE-119
CVE-2012-3971
Firefox < 15.0 - Remote Code Execution via Graphite 2 Memory Corruption
CVE-2012-3966
Firefox < 15.0 - Remote Code Execution via Negative Height BMP in ICO File
CVE-2012-1970
Mozilla Firefox < 15.0 - Remote Code Execution via Memory Corruption
CVE-2012-3410
GNU Bash - Stack-based Buffer Overflow in /dev/fd Filename Expansion
CVE-2012-0855
FFmpeg < 0.9 - Heap-Based Buffer Overflow in J2K Decoder
CVE-2012-1176
PyFriBidi < 0.11.0 - Buffer Overflow in fribidi_utf8_to_unicode Function
CVE-2012-3518
Tor < 0.2.2.37 - Denial of Service via Invalid Flavor Name in Vote or Consensus Document
CVE-2012-3501
SquidClamav 5.x-5.8 and 6.x-6.7 - Denial of Service via Unescaped URL in squidclamav_check_preview_handler
CVE-2012-2864
Google Chrome OS - Remote Code Execution via Mesa Array Overflow
CVE-2012-4165
Adobe Flash Player < 10.3.183.23 and 11.x < 11.4.402.265 - Remote Code Execution via Memory Corruption
CVE-2012-4164
Adobe Flash Player < 10.3.183.23 and 11.x < 11.4.402.265 - Remote Code Execution
CVE-2012-4163
Adobe Flash Player < 10.3.183.23 and 11.x < 11.4.402.265 - Remote Code Execution via Memory Corruption
CVE-2012-3461
libotr < 3.2.1 - Denial of Service via Base64 Decode Heap Overflow
CVE-2012-3455
KOffice < 2.3.3 - Heap-Based Buffer Overflow in Microsoft Import Filter
CVE-2012-0857
FFmpeg < 0.9 - Denial of Service via J2K Decoder Buffer Overflow
CVE-2012-0856
FFmpeg < 0.9.1 - Denial of Service via H263 Media File with Lowres Option
CVE-2012-0854
FFmpeg < 0.9.1 - Denial of Service via Heap-Based Buffer Overflow in dpcm_decode_frame
CVE-2012-0850
FFmpeg < 0.9.1 - Denial of Service via Crafted MPG File in SBR QMF Synthesis
CVE-2012-0848
FFmpeg 0.9.1 - Heap-Based Buffer Overflow in ws_snd_decode_frame
CVE-2012-0847
FFmpeg < 0.9 - Heap-Based Buffer Overflow in avfilter_filter_samples
CVE-2012-3456
Calligra < 2.4.3 - Heap-Based Buffer Overflow in Microsoft Import Filter
CVE-2012-0947
Libav <0.5.9, <0.6.6, <0.7.6, <0.8.2 - Buffer Overflow
CVE-2012-0859
FFmpeg < 0.9 - Denial of Service and Possible Remote Code Execution via Crafted Vorbis File
CVE-2012-0852
FFmpeg <0.9.1, Libav <0.5.9-0.8.3 - DoS/Code Injection
CVE-2012-0851
FFmpeg <0.9.1, Libav <0.5.9-0.8.3 - DoS/Code Injection
Details
Vulnerabilities
14,014
Exploit Likelihood
High