CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,028 vulnerabilities with CWE-119
CVE-2008-3647
Mac OS X 10.4.11 and 10.5.5 - Buffer Overflow in PSNormalizer via PostScript Bounding Box Comment
CVE-2008-3645
Mac OS X 10.4.11 and 10.5.5 - Local Heap-Based Buffer Overflow in EAPOLController Plugin
CVE-2008-3642
Mac OS X 10.4.11 and 10.5.5 - Buffer Overflow in ColorSync via Crafted ICC Profile
CVE-2008-3432
Vim 6.2-6.3 - Heap-Based Buffer Overflow via Shell Metacharacters in Filenames
CVE-2008-4508
Internet Download Manager - Stack-based Buffer Overflow via Crafted AppleDouble File
CVE-2008-4504
Hero DVD Player 3.0.8 - Heap-Based Buffer Overflow via Long M3u File Entry
CVE-2008-3828
Condor < 7.0.5 - Stack-Based Buffer Overflow in condor_schedd Daemon
CVE-2008-4384
LPViewer ActiveX Control - Stack-Based Buffer Overflow via url/toolbar/enableZoomPastMax Methods
CVE-2008-4470
Numark CUE 5.0 rev2 - Stack-based Buffer Overflow via M3U Playlist Absolute Pathname
CVE-2008-4452
Cambridge Computer Corporation vxFtpSrv 2.0.3 - Buffer Overflow via CWD Request
CVE-2008-4449
mIRC 6.34 - Remote Code Execution via Long Hostname in PRIVMSG
CVE-2008-4434
uTorrent < 1.7.7 and BitTorrent < 6.0.3 - Stack-Based Buffer Overflow via .torrent Created By Field
CVE-2008-4383
Alcatel OmniSwitch AOS 5.1-5.1.6.463.r02 - Remote Code Execution via Long Session Cookie
CVE-2008-4402
Trend Micro OfficeScan 8.0 SP1 - Remote Code Execution via CGI Module Buffer Overflow
CVE-2008-4396
FileAlyzer 1.6.0.0 and 1.6.0.4 beta - Stack-Based Buffer Overflow via Malformed Executable Version Data
CVE-2008-3522
JasPer 1.900.1 - Buffer Overflow
CVE-2008-4322
RealWin Server 2.0 - Remote Code Execution via Crafted FC_INFOTAG/SET_CONTROL Packet
CVE-2008-4321
FlashGet FTP 1.9 - Remote Code Execution via Long PWD Response
CVE-2008-2474
ABB PCU400 4.4-4.6 - Buffer Overflow via IEC60870-5-101/104 Packet
CVE-2008-4070
SeaMonkey < 1.1.12 - Heap-Based Buffer Overflow via Long Newsgroup Message Header
CVE-2008-0016
Mozilla Firefox <2.0.0.17 - Buffer Overflow
CVE-2008-4201
FAAD2 < 2.6.1 - Heap-Based Buffer Overflow in decodeMP4file Function
CVE-2008-4193
Alt-N SecurityGateway 1.0.1 - Stack-Based Buffer Overflow via Long Username Parameter
CVE-2008-4132
ComponentOne VSFlexGrid 7.0.1.151 and 8.0.20072.239 - Stack-Based Buffer Overflow via Archive Method
CVE-2008-4116
Apple iTunes and QuickTime - Heap-Based Buffer Overflow via Long Type Attribute in QuickTime Tag
Details
Vulnerabilities
14,028
Exploit Likelihood
High