CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,020 vulnerabilities with CWE-119
CVE-2010-3950
Microsoft Office XP SP3, Office Converter Pack, and Works 9 - Remote Code Execution via Crafted TIFF Image
CVE-2010-3949
Microsoft Office XP SP3 and Office Converter Pack - Buffer Overflow via Crafted TIFF Image
CVE-2010-3947
Microsoft Office XP SP3, Office Converter Pack, and Works 9 - RCE via TIFF Image Converter Heap Overflow
CVE-2010-3945
Microsoft Office - Remote Code Execution via Crafted CGM Image
CVE-2010-3942
Microsoft Windows Kernel win32k.sys - Local Privilege Escalation via User-Mode Memory Copy
CVE-2010-3939
Windows win32k.sys - Local Privilege Escalation via Improper Memory Allocation
CVE-2010-2570
Microsoft Publisher 2002 SP3, 2003 SP3, 2007 SP2, and 2010 - Remote Code Execution via Crafted Publisher File
CVE-2010-4395
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.5 - Remote Code Execution via Crafted AAC Frame Data
CVE-2010-4394
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.5 - Remote Code Execution via Long Server Header in RealPix File Parsing
CVE-2010-4392
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.5 - Remote Code Execution via Crafted ImageMap Data
CVE-2010-4391
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.5 - Remote Code Execution via Crafted RMX Header Field
CVE-2010-4390
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.5 - Heap-Based Buffer Overflow via IVR File Header
CVE-2010-4389
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.5 - Remote Code Execution via Cook Codec Heap Overflow
CVE-2010-4387
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.4 - Remote Code Execution via Crafted RealAudio Stream
CVE-2010-4386
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.4 - Remote Code Execution via Crafted RealMedia Video File
CVE-2010-4383
RealPlayer 11.0-11.1 and SP 1.0-1.1.4 - Heap-Based Buffer Overflow via Crafted RA5 File
CVE-2010-4382
RealPlayer 11.0-11.1 and SP 1.0-1.1.4 - Heap-Based Buffer Overflow via Crafted RealMedia File
CVE-2010-4381
RealPlayer 11.0-11.1 and SP 1.0-1.1.4 - Heap-Based Buffer Overflow via Crafted AAC File
CVE-2010-4380
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.4 - Heap-Based Buffer Overflow via Crafted SOUND File
CVE-2010-4379
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.4 - Heap-Based Buffer Overflow via SIPR File
CVE-2010-4378
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.5 - Remote Code Execution via RV20 Video Stream Length Field
CVE-2010-4377
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.5 - Heap-Based Buffer Overflow via Cook Audio Codec Subbands
CVE-2010-4376
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.1 - Heap-Based Buffer Overflow via GIF87a Screen Descriptor Header
CVE-2010-4375
RealPlayer 11.0-11.1 - Remote Code Execution via Malformed Multi-Rate Audio Stream
CVE-2010-3778
Firefox 3.5.x < 3.5.16 - Memory Corruption
Details
Vulnerabilities
14,020
Exploit Likelihood
High