CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,028 vulnerabilities with CWE-119
CVE-2008-0017
Firefox <3.0.4-2.0.0.18 & SeaMonkey <1.1.13 - DoS/Buffer Overflow
CVE-2008-5050
ClamAV < 0.94.1 - Remote Code Execution via Crafted VBA Project File
CVE-2008-5049
ISecSoft Anti-Keylogger Elite < 3.3.0 - Local Privilege Escalation via AKEProtect.sys IOCTL Buffer Overflow
CVE-2008-5048
ISecSoft Anti-Trojan Elite <= 4.2.2 - Buffer Overflow via Atepmon.sys IOCTL
CVE-2008-5045
Network-Client FTP Now 2.6 - Denial of Service via 1024-Character 200 Server Response
CVE-2008-5036
VLC media player 0.9.x - Stack-based Buffer Overflow via RealText Subtitle Parsing
CVE-2008-5032
VLC media player 0.5.0-0.9.5 - Stack-based Buffer Overflow via Invalid CUE Image File Header
CVE-2008-5030
libcaudio 0.99.12p2 - Remote Code Execution via Long CDDB Data
CVE-2008-5008
Secret Rabbit Code < 0.1.4 - Buffer Overflow via Crafted Audio File
CVE-2008-5005
Alpine <= 2.00 & IMAP Toolkit 2002-2007c Stack Overflow via Long Folder Extension
CVE-2008-5001
UltraVNC 1.0.2 and 1.0.4 - Stack-Based Buffer Overflow in FileTransfer.cpp
CVE-2008-4395
Linux Kernel ndiswrapper 1.53 - Buffer Overflow via Long ESSID
CVE-2008-4933
Linux Kernel < 2.6.28 - Buffer Overflow in hfsplus_find_cat
CVE-2008-4922
DjVu ActiveX Control for Microsoft Office - Buffer Overflow via ImageURL Property
CVE-2008-4306
Ubuntu Linux - Memory Corruption
CVE-2008-4867
FFmpeg < 0.4.9 - Buffer Overflow in DCA Decoder
CVE-2008-4866
FFmpeg < 0.4.9 - Buffer Overflow in DTS Generation Code
CVE-2008-4801
IBM Tivoli Storage Manager Client 5.1.0.0-5.1.8.1 - Remote Code Execution via Crafted TCP Data
CVE-2008-2238
OpenOffice.org 2.x < 2.4.2 - Remote Code Execution via Crafted EMR Records in EMF Files
CVE-2008-2237
OpenOffice.org 2.x < 2.4.2 - Remote Code Execution via Crafted WMF File
CVE-2008-4779
Tguzip - Memory Corruption
CVE-2008-4776
libgadu < 1.8.2 - Denial of Service via Large Contact Description Length
CVE-2008-4771
4xem VatCtrl Class - Stack-based Buffer Overflow via Url Property
CVE-2008-4762
freeSSHd 1.2.1 - Authenticated Stack-Based Buffer Overflow via Long Argument to Rename or Realpath Parameters
CVE-2008-4750
DB Software Laboratory VImp X 4.8.8.0 - Stack-Based Buffer Overflow via Long LogFile Property
Details
Vulnerabilities
14,028
Exploit Likelihood
High