CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,020 vulnerabilities with CWE-119
CVE-2011-2453
Adobe Flash Player < 10.3.183.11 and 11.x < 11.1.102.55 - Remote Code Execution
CVE-2011-2452
Adobe Flash Player < 10.3.183.11 and 11.x < 11.1.102.55 - Remote Code Execution via Memory Corruption
CVE-2011-2451
Adobe Flash Player < 10.3.183.11 and 11.x < 11.1.102.55 - Remote Code Execution
CVE-2011-2450
Adobe Flash Player < 10.3.183.11 and 11.x < 11.1.102.55 - Remote Code Execution via Heap Memory Corruption
CVE-2011-2445
Adobe Flash Player < 10.3.183.11 and 11.x < 11.1.102.55 - Remote Code Execution via Memory Corruption
CVE-2011-3894
Google Chrome <15.0.874.120 - Memory Corruption
CVE-2011-3654
Firefox < 8.0 - Remote Code Execution via SVG mpath Element Link Handling
CVE-2011-3652
Mozilla Firefox <8.0 - Memory Corruption
CVE-2011-3650
Firefox < 3.6.24 and 4.x-7.0 - Memory Corruption via JavaScript Debugging APIs
CVE-2011-4000
ChaSen 2.4.x - Buffer Overflow
CVE-2011-2449
Adobe Shockwave Player < 11.6.3.633 - Remote Code Execution via TextXtra Module
CVE-2011-2448
Adobe Shockwave Player < 11.6.3.633 - Remote Code Execution via Memory Corruption
CVE-2011-2447
Adobe Shockwave Player < 11.6.3.633 - Remote Code Execution via Memory Corruption
CVE-2011-2446
Adobe Shockwave Player < 11.6.3.633 - Remote Code Execution via DIRapi Library Memory Corruption
CVE-2011-3594
libpurple < 2.10.0 - Denial of Service via Invalid UTF-8 Sequence Handling
CVE-2011-3581
ldns < 1.6.11 - Heap-Based Buffer Overflow via Resource Record Type Handling
CVE-2011-3330
Schneider Electric Unity Pro <= 6.0 - Buffer Overflow in UnitelWay Windows Device Driver
CVE-2011-3992
D-Link DES-3800 <4.50B052 - Buffer Overflow
CVE-2011-4102
Wireshark 1.4.0-1.4.9 and 1.6.x < 1.6.3 - Denial of Service via ERF File Parser Heap Overflow
CVE-2011-1919
GE Intelligent Platforms Proficy Historian < 4.4.1 - Remote Code Execution via Crafted TCP Message Traffic
CVE-2011-1918
GE Intelligent Platforms Proficy Historian <4.0 - Buffer Overflow
CVE-2011-3251
Apple QuickTime < 7.7.1 - Remote Code Execution via Crafted TKHD Atoms
CVE-2011-3249
Apple QuickTime < 7.7.1 - Remote Code Execution via Crafted FLC Movie File
CVE-2011-4004
Cisco WebEx <SP49 EP40/T27 SP28 - Buffer Overflow
CVE-2011-3319
Cisco WebEx Recording Format Player T26 < SP49 EP40 and T27 < SP28 - Buffer Overflow in WRF Parsing
Details
Vulnerabilities
14,020
Exploit Likelihood
High