CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,028 vulnerabilities with CWE-119
CVE-2008-2468
LANDesk Management Suite, Security Suite, and Server Manager < 8.8 - Remote Code Execution via Crafted Heal Request
CVE-2008-2305
Mac OS X 10.4.11 and 10.5-10.5.4 - Remote Code Execution via Crafted Font in ATS
CVE-2008-4110
Microsoft SQL Server 2000 - Buffer Overflow via SQLVDirControl ActiveX Connect Method
CVE-2008-2437
Trend Micro OfficeScan/Client Server Messaging Security - Stack-based Buffer Overflow via Long ComputerName
CVE-2008-4087
Acoustica Beatcraft 1.02 Build 19 - Stack-Based Buffer Overflow via Long Instruments Title Field
CVE-2008-3529
libxml2 < 2.7.0 - Heap-Based Buffer Overflow via Long XML Entity Name
CVE-2008-2932
Red Hat adminutil 1.1.6 - Heap-Based Buffer Overflow via Percent-Encoded HTTP Input
CVE-2008-4052
HP OpenVMS - Stack-based Buffer Overflow in SMGSHR.EXE
CVE-2008-4048
Friendly Technologies FriendlyPPPoE Client <3.0.0.57 - Buffer Overflow
CVE-2008-3971
gmanedit 0.4.1 - Heap-Based Buffer Overflow via Crafted Man Page
CVE-2008-3915
Linux kernel <2.6.26.4 - Buffer Overflow
CVE-2008-3635
QuickTime < 7.5.5 - Stack-Based Buffer Overflow via Indeo v3.2 Codec
CVE-2008-3626
Apple QuickTime < 7.5.5 - Remote Code Execution via Crafted STSZ Atom
CVE-2008-3625
Apple QuickTime <7.5.5 - Buffer Overflow
CVE-2008-3624
Apple QuickTime <7.5.5 - Buffer Overflow
CVE-2008-3014
GDI+ - Remote Code Execution via Malformed WMF Image File
CVE-2008-3012
Microsoft Digital Image Suite 2006 - Remote Code Execution via Malformed EMF Image File
CVE-2008-3008
Windows Media Encoder - Stack-based Buffer Overflow via GetDetailsString Method
CVE-2008-3531
FreeBSD 7.0-7.1 - Local Privilege Escalation via Stack-Based Buffer Overflow in vfs_mount.c
CVE-2008-3916
GNU ed - Heap-Based Buffer Overflow in strip_escapes Function
CVE-2008-3908
Princeton WordNet <3.0 - Buffer Overflow
CVE-2008-3911
Linux kernel 2.6.26.3 - Buffer Overflow
CVE-2008-3892
VMware <5.5.8-6.0.5-1.0.8-2.0.5-1.0.7 - Buffer Overflow
CVE-2008-3877
Acoustica Mixcraft <4.2 - Buffer Overflow
CVE-2008-3878
Ultra Office Control <2.0.2008.801 - Buffer Overflow
Details
Vulnerabilities 14,028
Exploit Likelihood High