CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,027 vulnerabilities with CWE-119
CVE-2010-4053
IBM Informix Dynamic Server 11.10-11.50 - Authenticated Stack-Based Buffer Overflow via EXPLAIN Directive
CVE-2010-4050
Opera < 10.63 - Denial of Service via SVG Document Reference in IMG Element
CVE-2010-3183
Firefox < 3.5.14 and 3.6.x < 3.6.11 - Remote Code Execution via LookupGetterOrSetter Dangling Pointer
CVE-2010-3179
Mozilla Firefox <3.5.14 & <3.6.11 - Buffer Overflow
CVE-2010-3751
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.4 - Remote Code Execution via Long .smil Argument
CVE-2010-3748
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.4 - Stack-Based Buffer Overflow in RichFX Component
CVE-2010-3747
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.4 - Remote Code Execution via CDDA URI Parsing
CVE-2010-2578
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.4 - Heap-Based Buffer Overflow via Crafted QCP File
CVE-2010-2601
BlackBerry Enterprise Server < 4.1.7 and BlackBerry Professional Software < 4.1.4 - Buffer Overflow in PDF Distiller
CVE-2010-3222
Microsoft Windows XP/Server 2003 - Buffer Overflow
CVE-2010-3214
Microsoft Word <2010 - Buffer Overflow
CVE-2010-2746
Microsoft Windows XP-7 - Buffer Overflow
CVE-2010-3110
Novell Client < unknown - Buffer Overflow
CVE-2010-3658
Adobe Acrobat and Reader 9.x < 9.4 and 8.x < 8.2.5 - Remote Code Execution via Memory Corruption
CVE-2010-3632
Adobe Acrobat and Reader 9.x < 9.4 and 8.x < 8.2.5 - Remote Code Execution via Memory Corruption
CVE-2010-3628
Adobe Acrobat and Reader 9.x < 9.4 and 8.x < 8.2.5 - Remote Code Execution
CVE-2010-3623
Adobe Acrobat Reader 8.x < 8.2.5 and 9.x < 9.4 - Remote Code Execution
CVE-2010-3622
Adobe Acrobat and Reader 9.x < 9.4 and 8.x < 8.2.5 - Remote Code Execution via Memory Corruption
CVE-2010-3621
Adobe Acrobat and Reader 9.x < 9.4 and 8.x < 8.2.5 - Remote Code Execution via Memory Corruption
CVE-2010-3619
Adobe Acrobat and Reader 9.x < 9.4 and 8.x < 8.2.5 - Remote Code Execution via Memory Corruption
CVE-2010-2890
Adobe Reader/Acrobat <9.4/8.2.5 - Memory Corruption
CVE-2010-3302
Openswan 2.6.25-2.6.28 - Authenticated Buffer Overflow via Cisco DNS or Domain Info Packet
CVE-2010-3731
IBM DB2 9.1-9.7 - Remote Code Execution via Long Username String
CVE-2010-1623
APR-util < 1.3.10 - Memory Leak in apr_brigade_split_line
CVE-2010-3434
ClamAV < 0.96.3 - Buffer Overflow in PDF Stream Bounds Parsing
Details
Vulnerabilities 14,027
Exploit Likelihood High