CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,020 vulnerabilities with CWE-119
CVE-2010-4189
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via GIF Global Color Table Size
CVE-2010-4188
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via IFWV Chunk Size Field
CVE-2010-4187
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via Malformed Director File Chunk
CVE-2010-4093
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution
CVE-2010-2588
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via dirapi.dll Memory Corruption
CVE-2010-2587
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via dirapi.dll Memory Corruption
CVE-2010-3270
Cisco WebEx Meeting Center T27LB<T27LC - Buffer Overflow
CVE-2010-3269
Cisco WebEx Recording Format/ARF Players - Buffer Overflow
CVE-2010-3044
Cisco WebEx Recording Format - Buffer Overflow
CVE-2010-3043
Cisco WebEx Recording Format Player - Buffer Overflow via Crafted WRF or ARF File
CVE-2010-3042
Cisco WebEx Recording Format Player - Buffer Overflow via Crafted WRF or ARF File
CVE-2010-3041
Cisco WebEx Recording Format - Buffer Overflow
CVE-2010-4652
ProFTPD < 1.3.3d - Heap-Based Buffer Overflow via SQL Username Substitution Tags
CVE-2010-4393
RealPlayer 11.0-11.1 and 14.0.x < 14.0.2 - Remote Code Execution via Crafted AVI Header
CVE-2010-0110
Symantec AntiVirus Corporate Edition 10.x < 10.1 MR10 - Remote Code Execution via Stack-Based Buffer Overflow
CVE-2010-4717
GroupWise Internet Agent <8.02HP - Buffer Overflow
CVE-2010-4714
Novell GroupWise <8.02HP - Buffer Overflow
CVE-2010-4712
GroupWise Internet Agent <8.02HP - Buffer Overflow
CVE-2010-2777
Novell GroupWise <7.0-8.0 - Buffer Overflow
CVE-2010-4326
Novell GroupWise < 8.0.2 - Remote Code Execution via VCALENDAR Message Buffer Overflow
CVE-2010-4325
Novell GroupWise < 8.0.2 - Remote Code Execution via Crafted TZID in VCALENDAR Message
CVE-2010-4709
Automated Solutions Modbus/TCP Master OPC Server < 3.0.2 - Heap-Based Buffer Overflow via Crafted MODBUS Response Packet
CVE-2010-4701
Microsoft Windows Fax Services Cover Page Editor <5.2 r2 - RCE
CVE-2010-4267
HP Linux Imaging and Printing Project - Stack-based Buffer Overflow via SNMP Response
CVE-2010-4698
PHP <5.2.15, <5.3.4 - Buffer Overflow
Details
Vulnerabilities 14,020
Exploit Likelihood High