CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,016 vulnerabilities with CWE-119
CVE-2011-1750
qemu-kvm 0.14.0 - Heap-Based Buffer Overflow in virtio-blk Driver
CVE-2011-3194
Qt 4.7.4 - Buffer Overflow in TIFF Reader via TIFFTAG_SAMPLESPERPIXEL Tag
CVE-2011-2182
Linux kernel <2.6.39.1 - Buffer Overflow
CVE-2011-2912
libmodplug < 0.8.8.4 - Stack-based Buffer Overflow via Crafted S3M File
CVE-2011-1761
libmodplug <0.8.8.3 - Buffer Overflow
CVE-2011-3048
libpng < 1.0.59, 1.2.49, 1.4.11, 1.5.10 Heap-Based Buffer Overflow via Crafted PNG Text Chunk
CVE-2011-3359 HIGH
Linux Kernel < 2.6.39 - Denial of Service via Crafted Frame in b43 DMA
CVSS 7.5
CVE-2011-3191 HIGH
Linux Kernel < 3.1 - Memory Corruption via CIFSFindNext Integer Signedness Error
CVSS 8.8
CVE-2011-2517
Linux Kernel < 2.6.39.2 - Local Privilege Escalation via Long SSID in Wireless Scan
CVE-2011-3115
Google Chrome < 19.0.1084.52 - Remote Code Execution via V8 Type Corruption
CVE-2011-3114
Google Chrome < 19.0.1084.52 - Multiple Buffer Overflows in PDF Functionality
CVE-2011-3111
Google Chrome < 19.0.1084.52 - Denial of Service via Invalid Read Operation
CVE-2011-3110
Google Chrome < 19.0.1084.52 - Denial of Service via PDF Out-of-Bounds Write
CVE-2011-3106
Google Chrome < 19.0.1084.52 - Remote Code Execution via WebSockets SSL Handling
CVE-2011-3104
Google Chrome < 19.0.1084.52 - Denial of Service via Out-of-Bounds Read in Skia
CVE-2011-3088
Google Chrome < 19.0.1084.45 - Denial of Service via Hairline Drawing Out-of-Bounds Read
CVE-2011-3085
Google Chrome < 19.0.1084.45 - Denial of Service via Autofill Field Value Manipulation
CVE-2011-3083
Google Chrome < 19.0.1084.45 - Denial of Service via Malformed FTP URL in VIDEO Element
CVE-2011-5089
ICONICS GENESIS32 and BizViz - Buffer Overflow via Long Password
CVE-2011-1778
libarchive <2.8.5 - Buffer Overflow
CVE-2011-1777
libarchive <2.8.5 - Buffer Overflow
CVE-2011-4188
Novell iManager <2.7.4 - Buffer Overflow
CVE-2011-3176
Novell ZENworks Configuration Management 11.1 and 11.1a - Stack-Based Buffer Overflow via Opcode 0x4c Request
CVE-2011-3175
Novell ZENworks Configuration Management 11.1 and 11.1a - Remote Code Execution via Preboot Service Opcode 0x6c
CVE-2011-4535
TurboPower Abbrevia < 3.05 - Buffer Overflow via Crafted ZIP File
Details
Vulnerabilities 14,016
Exploit Likelihood High