CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,028 vulnerabilities with CWE-119
CVE-2009-1449
CoolPlayer Portable 2.19.1 - Stack-based Buffer Overflow via Skin File PlaylistSkin Parameter
CVE-2009-1439
Linux Kernel < 2.6.29 - Denial of Service via Long nativeFileSystem Field in CIFS Tree Connect Response
CVE-2009-1437
CoolPlayer Portable < 2.19.6 - Stack-based Buffer Overflow via Malformed Playlist File
CVE-2009-1182
Xpdf <= 3.02pl2 - Remote Code Execution via JBIG2 MMR Decoder Buffer Overflow
CVE-2009-0799
Xpdf < 3.02pl2 - Denial of Service via JBIG2 Decoder Out-of-Bounds Read
CVE-2009-0195
CUPS - Heap-Based Buffer Overflow via Crafted JBIG2 Symbol Dictionary Segments
CVE-2009-0146
Xpdf - Buffer Overflow in JBIG2 Decoder
CVE-2009-1372
ClamAV < 0.95.1 - Stack-based Buffer Overflow in cli_url_canon Function
CVE-2009-1370
Xilisoft Video Converter 3.1.53.0704n and 5.1.23.0402 - Stack-Based Buffer Overflow via .cue File
CVE-2009-1356
Elecard AVC HD Player - Stack-Based Buffer Overflow via Long MP3 Filename in Playlist
CVE-2009-1355
IBM AIX 5.2, 5.3, 6.1 - Stack-Based Buffer Overflow via Long Filename
CVE-2009-1353
Zervit Webserver 0.02 - Buffer Overflow via Long URI
CVE-2009-1352
Dawningsoft PowerCHM 5.7 - Stack-Based Buffer Overflow via Long URL in HTML Link
CVE-2009-1351
Apollo 37zz - Heap-Based Buffer Overflow via Long URI in Playlist File
CVE-2009-1330
Easy RM to MP3 Converter - Stack-based Buffer Overflow via Long Filename in Playlist File
CVE-2009-1329
Mini-stream Shadow Stream Recorder 3.0.1.7 - Remote Code Execution via Long URI in Playlist File
CVE-2009-1328
Mini-stream RM-MP3 Converter 3.0.0.7 - Stack-based Buffer Overflow via Long URI in Playlist File
CVE-2009-1327
Mini-stream WM Downloader 3.0.0.9 - Stack-based Buffer Overflow via Long URI in Playlist File
CVE-2009-1326
Mini-stream RM Downloader 3.0.0.9 - Stack-based Buffer Overflow via Long URI in Playlist File
CVE-2009-1325
Mini-stream Ripper 3.0.1.1 - Stack-based Buffer Overflow via Long URI in Playlist File
CVE-2009-1324
Mini-stream ASX to MP3 Converter 3.0.0.7 - Stack-based Buffer Overflow via Long URI in Playlist File
CVE-2009-0196
Ghostscript < 8.64 - Remote Code Execution via JBIG2 Symbol Dictionary Segment
CVE-2009-1119
EMC RepliStor 6.2-6.3 - Remote Code Execution via Crafted Message to ctrlservice.exe or rep_srv.exe
CVE-2009-0235
Microsoft WordPad < XP/2003 - Buffer Overflow
CVE-2009-0159
ntp < 4.2.4p7 - Remote Code Execution via Stack-Based Buffer Overflow in ntpq
Details
Vulnerabilities 14,028
Exploit Likelihood High