CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,027 vulnerabilities with CWE-119
CVE-2009-2285
libtiff 3.8.2 - Denial of Service via LZWDecodeCompat Buffer Underflow
CVE-2009-0689
K-Meleon 1.5.3 - Heap-Based Buffer Overflow via Large Precision Value in printf Format Argument
CVE-2009-2227
B Labs Bopup Comm Server <3.2.26.5460 - Buffer Overflow
CVE-2009-1628
Unisys Business Information Server 10 and 10.1 - Stack-based Buffer Overflow via Crafted TCP Packet
CVE-2009-1394
Motorola Timbuktu Pro 8.6.5 - Stack-based Buffer Overflow via PlughNTCommand Named Pipe
CVE-2009-2225
SureThing CD/DVD Labeler 5.1.616 - Buffer Overflow
CVE-2009-2175
xcftools 1.0.4 - Stack-based Buffer Overflow in flattenIncrementally Function
CVE-2009-2121
Google Chrome <2.0.172.33 - DoS/Buffer Overflow
CVE-2009-1389
Linux Kernel < 2.6.30 - Buffer Overflow in RTL8169 NIC Driver via Long Packet
CVE-2009-1861
Adobe Acrobat and Reader 7-7.1.2, 8-8.1.5, 9-9.1.1 - Remote Code Execution via Crafted JPX Stream
CVE-2009-1855
Adobe Acrobat 7-9 - Stack-based Buffer Overflow via Malformed U3D Model File
CVE-2009-0889
Adobe Acrobat and Reader - Heap-Based Buffer Overflow in JBIG2 Filter
CVE-2009-0888
Adobe Acrobat and Reader - Heap-Based Buffer Overflow in JBIG2 Filter
CVE-2009-0512
Adobe Reader <7.1.3, Acrobat <8.1.6, Acrobat <9.1.2 - RCE
CVE-2009-0511
Adobe Reader <7.1.3, Acrobat <8.1.6, Acrobat <9.1.2 - RCE
CVE-2009-0510
Adobe Reader <7.1.3, Acrobat <8.1.6, Acrobat <9.1.2 - RCE
CVE-2009-0509
Adobe Acrobat 7-9 - Remote Code Execution via JBIG2 Filter Heap Overflow
CVE-2009-0198
Adobe Reader <7.1.3,8.1.6,9.1.2 - Buffer Overflow
CVE-2009-1533
Microsoft Office and Works - Buffer Overflow via Crafted Works .wps File
CVE-2009-0565
Microsoft Office Word 2000 SP3, 2002 SP3, 2007 SP1-SP2 - Remote Code Execution via Malformed Record
CVE-2009-0228
Microsoft Windows 2000 SP4 - Buffer Overflow
CVE-2009-0023
Apache APR-util < 1.3.5 - Denial of Service via Heap-Based Buffer Underflow
CVE-2009-1944
AIMP 2.51 build 330 - Stack-based Buffer Overflow via Long ID3 Tag
CVE-2009-1943
SafeNet SoftRemote <10.8.6 - Buffer Overflow
CVE-2009-1915
ICQ 6.5 - Stack-based Buffer Overflow via Long URL Parameter in .URL File
Details
Vulnerabilities 14,027
Exploit Likelihood High