CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,020 vulnerabilities with CWE-119
CVE-2010-4531
PCSC-Lite - Stack-based Buffer Overflow in ATR Handler
CVE-2010-4695
gif2png 2.5.1-2.5.2 - Path Traversal via Command-Line Argument
CVE-2010-4694
gif2png < 2.5.3 - Buffer Overflow via Long PNG Extension
CVE-2010-2604
BlackBerry Enterprise Server 4.1.3-5.0.2 & Express 5.0.1-5.0.2 - RCE via PDF Distiller Buffer Overflow
CVE-2010-3444
GNU FriBidi <0.19.3 - Buffer Overflow
CVE-2010-3984
CA ARCserve Replication and High Availability - Remote Code Execution via SOAP Request
CVE-2010-4523
OpenSC < 0.11.13 - Buffer Overflow via Smart Card Serial Number
CVE-2010-4538
Wireshark - Buffer Overflow in ENTTEC DMX Packet Dissector
CVE-2010-2642
Evince < 2.32 - Heap-Based Buffer Overflow in AFM Font Parser
CVE-2010-3873
Linux Kernel < 2.6.36.2 - Heap Memory Corruption via X.25 Facility Parsing
CVE-2010-4321
Novell iPrint Client 5.52 - Stack-based Buffer Overflow via ienipp.ocx ActiveX Control
CVE-2010-4597
Ecava IntegraXor < 3.5.3900.5 - Stack-Based Buffer Overflow via IntegraXor.Project ActiveX Control
CVE-2010-3972
Microsoft Internet Information Services FTP Service 7.0-7.5 - Remote Code Execution via Crafted FTP Command
CVE-2010-4113
HP Power Manager < 4.3.2 - Remote Code Execution via Long Login Variable
CVE-2010-3970
Windows XP/2003/Vista/2008 - Remote Code Execution via Crafted Thumbnail Bitmap
CVE-2010-2590
SAP Crystal Reports 2008 SP3 Fix Pack 3.2 - Remote Code Execution via Long ServerResourceVersion Property
CVE-2010-1676
Tor < 0.2.1.28 and 0.2.2.x < 0.2.2.20-alpha - Heap-Based Buffer Overflow
CVE-2010-4557
Invensys Wonderware InBatch 8.1 and 9.0 - Buffer Overflow via Crafted Request to Port 9001
CVE-2010-4556
SAP NetWeaver Business Client - Stack-Based Buffer Overflow via SapThemeRepository ActiveX Control
CVE-2010-4262
Xfig 3.2.4-3.2.5 - Stack-Based Buffer Overflow via Crafted FIG Image Color Definition
CVE-2010-2602
BlackBerry Enterprise Server 4.1.6-4.1.7 and 5.0.0-5.0.2 - Buffer Overflow in PDF Distiller
CVE-2010-3963
Windows XP SP2-SP3 and Server 2003 SP2 - Local Privilege Escalation via NDProxy Buffer Overflow
CVE-2010-3954
Microsoft Publisher 2002 SP3, 2003 SP3, and 2010 - Remote Code Execution via Crafted Publisher File
CVE-2010-3952
Microsoft Office XP SP3 and Office Converter Pack - Remote Code Execution via Crafted FlashPix Image
CVE-2010-3951
Microsoft Office XP SP3 and Office Converter Pack - Remote Code Execution via FlashPix Image Converter
Details
Vulnerabilities
14,020
Exploit Likelihood
High