CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,028 vulnerabilities with CWE-119
CVE-2008-7009
Check Point ZoneAlarm Security Suite 7.0.483.000 and 8.0.020.000 - Local Buffer Overflow via Long Path
CVE-2008-7004
elog < 2.7.1 - Buffer Overflow
CVE-2008-6998
Google Chrome < 0.2.149.29 - Stack-Based Buffer Overflow via Hover Over Long Path Link
CVE-2008-6994
Google Chrome 0.2.149.27 - Stack-Based Buffer Overflow via Long TITLE Element in SaveAs Feature
CVE-2008-6953
ooVoo 1.7.1.35 - Buffer Overflow via Long oovoo: URI
CVE-2008-6922
CMailServer 5.4.6 - Stack-Based Buffer Overflow via Multiple CMailCOM.dll Methods
CVE-2008-6899
freeSSHd 1.2.1 - Authenticated Buffer Overflow via SFTP Commands
CVE-2008-6898
SaschArt SasCam Webcam Server 2.6.5 - Buffer Overflow via XHTTP Module Get Method
CVE-2008-6897
Getleft 1.2 - Buffer Overflow via Long HTML Tag Attributes
CVE-2008-0015
HIGH
KEV
Microsoft Windows 2003 Server and XP - Remote Code Execution via MPEG2TuneRequest ActiveX Control
CVSS 8.8
CVE-2008-6846
avast! Linux Home Edition 1.0.5-1.0.8 - Stack-Based Buffer Overflow via Malformed ISO or RPM File
CVE-2008-6821
IBM DB2 8-9.5 - Buffer Overflow in DAS Server
CVE-2008-3869
Sun Solaris 8 and 9 - Remote Code Execution via RPC Request Decoding
CVE-2008-4828
IBM Tivoli Storage Manager Client - Memory Corruption
CVE-2008-1107
Danske Bank e-Sec Control Module ActiveX <3.1.0.48 - Buffer Overflow
CVE-2008-4420
HP OpenView Performance Agent - Stack-Based Buffer Overflow via Long Filename in ZIP Archive
CVE-2008-6703
Stalker-game S.t.a.l.k.e.r. < 1.0006 - Memory Corruption
CVE-2008-6679
Ghostscript 8.62 - Buffer Overflow in BaseFont Writer Module
CVE-2008-6583
BS.player 2.27 build 959 - Buffer Overflow via Long String in .SRT File
CVE-2008-4825
UltraISO < 9.3.3.2685 - Buffer Overflow via Crafted CIF, C2D, or GI File
CVE-2008-6563
Trillian 3.1.9.0 - Buffer Overflow in XML Parser via Crafted DTD File
CVE-2008-6560
cman < 2.03.08-1 - Buffer Overflow via Long cluster.conf File
CVE-2008-4564
Autonomy KeyView SDK <= 10.4 - Remote Code Execution via Crafted Word Perfect Document
CVE-2008-4563
IBM Tivoli Storage Manager 5.2-5.3.6.0/5.4.0.0-5.4.4.0 - RCE via Heap Overflow in adsmdll.dll
CVE-2008-3547
OpenTTD < 0.6.1 - Authenticated Buffer Overflow via Long Company and Client Names
Details
Vulnerabilities
14,028
Exploit Likelihood
High