CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,028 vulnerabilities with CWE-119
CVE-2009-0659
TPTEST 3.1.7 - Stack-Based Buffer Overflow via Long Email Field in STATS Line
CVE-2009-0658 HIGH
Adobe Reader <9.0 - Buffer Overflow
CVSS 7.8
CVE-2009-0650
tptest < 3.1.7 - Stack-Based Buffer Overflow via Long STATS Line pwd Field
CVE-2009-0310
SUSE blinux <11.0 - Buffer Overflow
CVE-2009-0605
Linux Kernel <2.6.28.5 - Memory Corruption
CVE-2009-0363
BarnOwl < 1.0.5 - Remote Code Execution via Crafted Zcrypt Message or Reply Command
CVE-2009-0599
Wireshark 0.99.7-1.0.5 - Denial of Service via Malformed NetScreen Snoop File
CVE-2009-0569
Becky! Internet Mail <2.48.02 - RCE
CVE-2009-0019
Apple Mac OS X <10.5.7 - DoS/Info Disclosure
CVE-2009-0018
Apple Mac OS X <10.5.6 - Memory Corruption
CVE-2009-0017
Apple Mac OS X <10.5.6 - Buffer Overflow
CVE-2009-0012
Apple Mac OS X 10.5.6 - Buffer Overflow
CVE-2009-0009
Apple Mac OS X 10.4.11 and 10.5.6 - Remote Code Execution via Pixlet Codec
CVE-2009-0546
NewsGator FeedDemon <2.7 - Buffer Overflow
CVE-2009-0544
PyCrypto ARC2 2.0.1 - Buffer Overflow
CVE-2009-0036
libvirt_proxy 0.5.1 - Buffer Overflow
CVE-2009-0305
BlackBerry Application Web Loader 1.0 - Buffer Overflow
CVE-2009-0450
BlazeVideo HDTV Player <3.5 - Buffer Overflow
CVE-2009-0449
Kaspersky Anti-Virus - Buffer Overflow
CVE-2009-0443
Elecard AVC HD PLAYER 5.5.90116 - Buffer Overflow
CVE-2009-0491
Elecard MPEG Player <5.5 - Buffer Overflow
CVE-2009-0210
AREVA e-terrahabitat <5.7 - Buffer Overflow
CVE-2009-0476
MultiMedia Soft AdjMmsEng.dll <7.11.2.7 - Buffer Overflow
CVE-2009-0376
RealNetworks RealPlayer <6.0.12.1741 - RCE
CVE-2009-0410
Novell GroupWise 6.5x-8.0 - Remote Code Execution via Malformed RCPT Command
Details
Vulnerabilities 14,028
Exploit Likelihood High