CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,027 vulnerabilities with CWE-119
CVE-2010-2348
Batch Audio Converter Lite Edition <= 1.0.0.0 - Remote Code Execution via Long Line in WAV File
CVE-2010-2343
D.R. Software Audio Converter 8.1, 2007, and 8.05 - Stack-based Buffer Overflow via PLS Playlist File
CVE-2010-2331
iSharer File Sharing Wizard 1.5.0 - Stack-Based Buffer Overflow via Long HEAD Request
CVE-2010-2330
iSharer File Sharing Wizard 1.5.0 - Stack-Based Buffer Overflow via Long Content-Length Header
CVE-2010-2329
Rosoft Audio Converter 4.4.4 - Remote Code Execution via Long Playlist Entry in .m3u File
CVE-2010-2321
Adobe InDesign CS3 10.0 - Buffer Overflow via Crafted .indd File
CVE-2010-0407
pcsc-lite < 1.5.4 - Local Privilege Escalation via Crafted Message Data
CVE-2010-2063
Samba 3.0.0-3.3.12 - Remote Code Execution via SMB1 Packet Chaining
CVE-2010-1748
CUPS < 1.4.4 - Information Disclosure via Malformed Percent-Encoded URI Parameter
CVE-2010-1642
Samba < 3.4.8 and 3.5.x < 3.5.2 - Denial of Service via Malformed Session Setup AndX Request
CVE-2010-0543
Apple Mac OS X 10.5.8 and 10.6 < 10.6.2 - Remote Code Execution via Crafted MPEG2 Movie File
CVE-2010-2311
Power Tab Editor 1.7 build 80 - Stack-based Buffer Overflow via Long Font Name in .ptb File
CVE-2010-2309
EvoLogical EvoCam 3.6.6-3.6.7 - Remote Code Execution via Long GET Request
CVE-2010-2305
Symantec Sygate Personal Firewall 5.6 build 2808 - Buffer Overflow via ActiveX SetRegString Method
CVE-2010-1932
XnView 1.97.4 - Heap-Based Buffer Overflow via MultiBitMap Paint Data Section
CVE-2010-2189
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 - Memory Corruption
CVE-2010-2188
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 Memory Corruption
CVE-2010-2187
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 - Memory Corruption
CVE-2010-2185
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 - Remote Code Execution
CVE-2010-2184
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 - Memory Corruption
CVE-2010-2182
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 - Memory Corruption and Possible Remote Code Execution
CVE-2010-2180
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 - Memory Corruption
CVE-2010-2178
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 - Memory Corruption
CVE-2010-2177
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 - Memory Corruption and Possible Remote Code Execution
CVE-2010-2176
Adobe Flash Player < 9.0.277.0 and 10.x < 10.1.53.64 - Memory Corruption and Possible Remote Code Execution
Details
Vulnerabilities 14,027
Exploit Likelihood High