CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,028 vulnerabilities with CWE-119
CVE-2008-6447
QuikSoft EasyMail MailStore ActiveX emmailstore.dll 6.5.0.3 - Buffer Overflow via CreateStore Method
CVE-2008-6444
Baidu Hi IM - Stack-Based Buffer Overflow via Crafted Packet
CVE-2008-6415
YoungZSoft CCProxy 6.5 - Buffer Overflow via Long Hostname in CONNECTION Request
CVE-2008-6363
DesignWorks Professional 4.3.1 and 5.0.7 - Stack-Based Buffer Overflow via Crafted .cct File
CVE-2008-5263
ksquirrel-libs 0.8.0 - Buffer Overflow
CVE-2008-6252
smcFanControl 2.1.2 - Local Privilege Escalation via Long -k Option
CVE-2008-6186
RaidenFTPD 2.4 build 3620 - Authenticated Stack-Based Buffer Overflow via CWD or MLST Commands
CVE-2008-6071
GraphicsMagick <1.1.14, <1.2.3 - Buffer Overflow
CVE-2008-6070
GraphicsMagick <1.2.3 - Buffer Overflow
CVE-2008-4562
HP OpenView Network Node Manager 7.01, 7.51, 7.53 - Remote Code Execution via ovlaunch CGI Host Parameter
CVE-2008-6005
W3C Amaya Web Browser <11.0.1 - Buffer Overflow
CVE-2008-5260
AXIS Camera Control <2.40.0.0 - Buffer Overflow
CVE-2008-3865
Trend Micro Internet Security 2007 and 2008 - Remote Code Execution via Firewall Service Packet Handling
CVE-2008-5911
RealNetworks Helix Server <11.1.8-12.0.1 - Buffer Overflow
CVE-2008-5902
xrdp <0.4.1 - Remote Code Execution
CVE-2008-4834
Microsoft Windows - Remote Code Execution via Malformed SMB NT Trans Request
CVE-2008-5262
DevIL 1.7.4 - Stack-Based Buffer Overflow in iGetHdrHeader Function
CVE-2008-5876
Irrlicht < 1.5 - Buffer Overflow in B3D Loader
CVE-2008-4827
ComponentOne SizerOne 8.0.20081.140 - Remote Code Execution via Tab Caption Overflow
CVE-2008-0067
HP OpenView Network Node Manager 7.01, 7.51, 7.53 - Remote Code Execution via Long String Parameters
CVE-2008-5868
IntelliTamper <2.08 - Buffer Overflow
CVE-2008-5839
Foxmail 6.5 - Remote Code Execution via Long mailto URI in HREF Attribute
CVE-2008-5824
audiofile 0.2.6 - Heap-Based Buffer Overflow via Crafted WAV File
CVE-2008-5756
Hex Workshop 5.1.4 - Buffer Overflow
CVE-2008-5755
IntelliTamper <2.08 - Buffer Overflow
Details
Vulnerabilities 14,028
Exploit Likelihood High