CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,020 vulnerabilities with CWE-119
CVE-2010-5145
Websense Web Security/Web Filter <6.3.1-7.1.1 - DoS
CVE-2010-5140
Bitcoin Core < 0.3.13 and wxBitcoin < 0.3.13 - Denial of Service via Invalid Transaction Flood
CVE-2010-4650
Linux Kernel < 2.6.37 - Buffer Overflow in fuse_do_ioctl
CVE-2010-4666
libarchive 3.0 - Buffer Overflow in LZX Huffman Code Handling
CVE-2010-5081
Mini-Stream RM-MP3 Converter 3.1.2.1 - Buffer Overflow
CVE-2010-4840
ManageEngine EventLog Analyzer <6.1 - Buffer Overflow
CVE-2010-4309
Adobe Shockwave Player < 11.6.1.629 - Remote Code Execution via Memory Corruption
CVE-2010-4308
Adobe Shockwave Player < 11.6.1.629 - Remote Code Execution via Memory Corruption
CVE-2010-3908
FFmpeg < 0.5.4 - Memory Corruption via Malformed WMV File
CVE-2010-3974
Windows Fax Cover Page Editor - Remote Code Execution via Crafted .cov File
CVE-2010-4596
RealNetworks Helix Server and Helix Mobile Server < 14.2 - Stack-based Buffer Overflow via RTSP Request
CVE-2010-3276
VideoLAN VLC Media Player <1.1.8 - RCE
CVE-2010-3275
VideoLAN VLC Media Player <1.1.8 - RCE
CVE-2010-4228
Novell NetWare - Stack-based Buffer Overflow via DELE Command
CVE-2010-4227
Novell Netware < 6.5 SP8 - Remote Code Execution via Crafted NFS RPC Request
CVE-2010-4328
Novell iPrint Open Enterprise Server SP2-SP3 - Remote Code Execution via LPR Opcode Buffer Overflow
CVE-2010-4323
Novell ZENworks Configuration Manager < 11.0 - Remote Code Execution via Long TFTP Request
CVE-2010-4742
Moxa ActiveX SDK <2.2.0.5 - Buffer Overflow
CVE-2010-4741
Moxa Device Manager <2.3 - Buffer Overflow
CVE-2010-4740
SCADA Engine BACnet OPC Client <1.0.25 - Buffer Overflow
CVE-2010-4307
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution
CVE-2010-4306
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via Memory Corruption
CVE-2010-4192
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via Crafted 3D Assets Record
CVE-2010-4191
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via Memory Corruption
CVE-2010-4190
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via Crafted CSWV RIFF Chunk
Details
Vulnerabilities 14,020
Exploit Likelihood High