CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,027 vulnerabilities with CWE-119
CVE-2010-3255
Google Chrome < 6.0.472.53 and WebKitGTK < 1.2.6 - Memory Corruption via Counter Node Handling
CVE-2010-3253
Google Chrome <6.0.472.53 - Memory Corruption
CVE-2010-2739
Microsoft Windows - Buffer Overflow
CVE-2010-2521
Linux Kernel < 2.6.34 - Buffer Overflow in NFSv4 XDR Implementation
CVE-2010-2575
KDE SC 4.3.0-4.5.0 - Heap-Based Buffer Overflow in TranscribePalmImageToJPEG RLE Decompression
CVE-2010-3187
IBM AIX < 5.3 - Remote Code Execution via Long NLST Command
CVE-2010-0120
RealPlayer 11.0-11.1 and RealPlayer SP 1.0-1.1.4 - Heap-Based Buffer Overflow via QCP Audio Content
CVE-2010-2882
Adobe Shockwave Player <11.5.8.612 - Memory Corruption
CVE-2010-2881
Adobe Shockwave Player <11.5.8.612 - Memory Corruption
CVE-2010-2880
Adobe Shockwave Player <11.5.8.612 - Memory Corruption
CVE-2010-2870
Adobe Shockwave Player <11.5.8.612 - Heap Memory Corruption
CVE-2010-2869
Adobe Shockwave Player <11.5.8.612 - Memory Corruption
CVE-2010-2868
Adobe Shockwave Player <11.5.8.612 - Memory Corruption
CVE-2010-2867
Adobe Shockwave Player <11.5.8.612 - RCE
CVE-2010-2864
Adobe Shockwave Player <11.5.8.612 - Memory Corruption
CVE-2010-2863
Adobe Shockwave Player <11.5.8.612 - Memory Corruption
CVE-2010-3121
DevonIT Thin-Client Management Tool - Buffer Overflow in tm-console-bin
CVE-2010-2360
Winny < 2.0b7.1 - Remote Code Execution via Buffer Overflow
CVE-2010-1808
Apple Type Services - Remote Code Execution via Crafted Embedded Font
CVE-2010-1801
CoreGraphics - Remote Code Execution via Crafted PDF File
CVE-2010-3120
Google Chrome <5.0.375.127 - Memory Corruption
CVE-2010-3119
Google Chrome <5.0.375.127 & webkitgtk <1.2.6 - Memory Corruption
CVE-2010-3113
Google Chrome < 5.0.375.127 - Memory Corruption via SVG Document State Handling
CVE-2010-3112
Google Chrome <5.0.375.127 - Memory Corruption
CVE-2010-2947
libHX < 3.6 - Heap-Based Buffer Overflow via HX_split Function
Details
Vulnerabilities 14,027
Exploit Likelihood High