CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,027 vulnerabilities with CWE-119
CVE-2010-2489
Ruby 1.9.x < 1.9.1-p429 - Buffer Overflow via ARGF.inplace_mode
CVE-2010-2494
bogofilter < 1.2.2 - Denial of Service via Base64 Decoder Buffer Underflow
CVE-2010-2221
Zaal Tgt < 1.0.5 - Memory Corruption
CVE-2010-2651
Google Chrome <5.0.375.99 - Memory Corruption
CVE-2010-2648
Google Chrome <5.0.375.99 - Memory Corruption
CVE-2010-2647
Google Chrome <5.0.375.99 - Memory Corruption
CVE-2010-2483
libtiff - Denial of Service via Invalid SamplesPerPixel and Photometric Values
CVE-2010-2481
libtiff < 3.9.4 - Denial of Service via Crafted TIFF File
CVE-2010-1666
python-cjson < 1.0.5.1 - Buffer Overflow via Crafted Unicode Input to cjson.encode
CVE-2010-2212
Adobe Acrobat and Reader 9.x < 9.3.3 and 8.x < 8.2.3 - Remote Code Execution via Crafted Flash Tag in PDF
CVE-2010-2211
Adobe Acrobat and Reader 9.x < 9.3.3 and 8.x < 8.2.3 - Remote Code Execution via Memory Corruption
CVE-2010-2210
Adobe Acrobat and Reader 9.x < 9.3.3 and 8.x < 8.2.3 - Remote Code Execution via Memory Corruption
CVE-2010-2209
Adobe Acrobat and Reader 9.x < 9.3.3 and 8.x < 8.2.3 - Remote Code Execution
CVE-2010-2207
Adobe Acrobat and Reader 9.x < 9.3.3 and 8.x < 8.2.3 - Remote Code Execution
CVE-2010-2203
Adobe Acrobat and Reader 9.x - Remote Code Execution via Memory Corruption
CVE-2010-2202
Adobe Reader and Acrobat 9.x < 9.3.3 and 8.x < 8.2.3 - Remote Code Execution
CVE-2010-1295
Adobe Reader/Acrobat <9.3.3/8.2.3 - Memory Corruption
CVE-2010-1929
Novell iManager <=2.7.3 FTF2 - Authenticated RCE via EnteredClassID/NewClassName
CVE-2010-2440
Subtitle Translation Wizard 3.0 - Stack-based Buffer Overflow via Crafted SRT File
CVE-2010-2439
MoreAmp - Stack-based Buffer Overflow via Long Line in Song List File
CVE-2010-2067
libtiff < 3.9.4 - Stack-based Buffer Overflow via EXIF SubjectDistance Field
CVE-2010-1753
iPhone OS < 4.0 - Remote Code Execution via Crafted JPEG Image
CVE-2010-1752
iPhone OS < 4.0 - Remote Code Execution via CFNetwork URL Handling
CVE-2010-2351
Novell Netware < 6.5 - Remote Code Execution via SMB Sessions Setup AndX Packet
CVE-2010-2350
Ziproxy 3.1.0 - Heap-Based Buffer Overflow in PNG Decoder
Details
Vulnerabilities 14,027
Exploit Likelihood High