CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,020 vulnerabilities with CWE-119
CVE-2011-2809
iTunes < 10.5 - Remote Code Execution via iTunes Store Browsing
CVE-2011-2356
iTunes < 10.5 - Remote Code Execution via iTunes Store Browsing
CVE-2011-2354
Apple iTunes < 10.5 - Remote Code Execution via iTunes Store Browsing
CVE-2011-2352
iTunes < 10.5 - Remote Code Execution via iTunes Store Browsing
CVE-2011-2341
iTunes < 10.5 - Remote Code Execution via iTunes Store Browsing
CVE-2011-2339
iTunes < 10.5 - Remote Code Execution via iTunes Store Browsing
CVE-2011-2338
iTunes < 10.5 - Remote Code Execution via iTunes Store Browsing
CVE-2011-0259
Apple iTunes < 10.5 - Remote Code Execution via String Tokenization
CVE-2011-2003
Microsoft Windows - Buffer Overflow
CVE-2011-3327
Quagga < 0.99.19 - Heap-Based Buffer Overflow via Crafted BGP UPDATE Message
CVE-2011-3323
Quagga < 0.99.19 - Denial of Service via OSPFv3 Link State Update Message
CVE-2011-2663
Novell GroupWise 8.0 - Remote Code Execution via Crafted RRULE Variable in VCALENDAR Attachment
CVE-2011-0334
Novell GroupWise 8.0 - Remote Code Execution via Long HTTP Request for CSS File
CVE-2011-0333
Novell GroupWise 8.0 - Remote Code Execution via Crafted TZNAME in VCALENDAR Attachment
CVE-2011-3868
VMware Workstation 7.x < 7.1.5 - Buffer Overflow via UDF Filesystem in ISO Image
CVE-2011-3332
Iceni Argus < 6.20 and Infix 5.04 - Remote Code Execution via Crafted PDF with Flate Compression
CVE-2011-3873
Google Chrome <14.0.835.202 - Memory Corruption
CVE-2011-2881
Google Chrome < 14.0.835.202 - Memory Corruption via Google V8 Hidden Objects
CVE-2011-2443
Adobe Photoshop Elements <= 8.0 - Buffer Overflow via Crafted .grd or .abr File
CVE-2011-3976
AmmSoft ScriptFTP 3.3 - Buffer Overflow
CVE-2011-3005
Mozilla Firefox 4.x-6 and Thunderbird < 6.0.2 - Use-After-Free via Crafted OGG Headers
CVE-2011-3003
Mozilla Firefox < 7.0 and SeaMonkey < 2.4 - Memory Corruption via WebGL
CVE-2011-3002
Firefox < 7.0 and SeaMonkey < 2.4 - Remote Code Execution via ANGLE Memory Allocation Error
CVE-2011-2543
Cisco Telepresence C Series < TC4.2.0 - Authenticated Buffer Overflow via cuil getxml Location Parameter
CVE-2011-2427
Adobe Flash Player < 10.3.183.10 - Remote Code Execution via Stack-Based Buffer Overflow in AVM
Details
Vulnerabilities
14,020
Exploit Likelihood
High