CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,027 vulnerabilities with CWE-119
CVE-2010-3084
Linux kernel <2.6.36-rc4 - Buffer Overflow
CVE-2010-3087
LibTIFF <3.9.2-5.2.1 - Memory Corruption
CVE-2010-3081 HIGH
Linux kernel <2.6.36-rc4-git2 - Privilege Escalation
CVSS 7.8
CVE-2010-3281
Alcatel-Lucent OmniVista 4760 <R5.1.06.03.c_Patch3 - Buffer Overflow
CVE-2010-3416 CRITICAL
Google Chrome <6.0.472.59 - Memory Corruption
CVSS 9.8
CVE-2010-3415
Google Chrome <6.0.472.59 - Memory Corruption
CVE-2010-3414
Google Chrome <6.0.472.59 - Memory Corruption
CVE-2010-3407
IBM Lotus Domino <8.0.2 FP5-8.5.1 FP2 - RCE
CVE-2010-3405
IBM AIX <6.1 & VIOS <2.1 - Buffer Overflow
CVE-2010-2730
Internet Information Services 7.5 - Remote Code Execution via Crafted FastCGI Request Headers
CVE-2010-2728
Microsoft Outlook 2002 SP3, 2003 SP3, and 2007 SP2 - Remote Code Execution via Crafted Email Message
CVE-2010-1899
Internet Information Services 5.1-7.5 - Denial of Service via Crafted ASP Request
CVE-2010-0820 HIGH
Microsoft Windows - Buffer Overflow
CVSS 8.8
CVE-2010-3396
Kingsoft Antivirus <2010.04.26.648 - Buffer Overflow
CVE-2010-3069
Samba 3.0.0-3.3.13 - Stack-Based Buffer Overflow via Windows Security ID Parsing
CVE-2010-2799
Socat 1.5.0.0-1.7.1.2 and 2.0.0-b1-2.0.0-b3 - Stack-based Buffer Overflow in nestlex Function
CVE-2010-2948
Quagga < 0.99.17 - Authenticated Stack-Based Buffer Overflow via Malformed ORF Record
CVE-2010-1817
iPhone OS < 4.1 - Remote Code Execution via Crafted GIF File
CVE-2010-1814
iPhone OS < 4.1 - Remote Code Execution via Form Menu Memory Corruption
CVE-2010-1813
iPhone OS < 4.1 - Remote Code Execution via HTML Object Outlines
CVE-2010-1811
iPhone OS < 4.1 - Remote Code Execution via Crafted TIFF File
CVE-2010-3168
Mozilla Firefox <3.5.12 & 3.6.x <3.6.9 - XSS
CVE-2010-3167
Firefox < 3.5.12 and 3.6.x < 3.6.9 - Remote Code Execution via XUL Tree Node Removal
CVE-2010-3166
Firefox < 3.5.12 and 3.6.x < 3.6.9 - Remote Code Execution via Bidirectional Text Run
CVE-2010-2770
Firefox < 3.5.12 and 3.6.x < 3.6.9 - Remote Code Execution via Crafted Font in Data URL
Details
Vulnerabilities 14,027
Exploit Likelihood High