CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,028 vulnerabilities with CWE-119
CVE-2008-2503
eMule X-Ray - Buffer Overflow in Uploadlist
CVE-2008-0955
Creative Software AutoUpdate Engine - Stack-based Buffer Overflow via CacheFolder Property
CVE-2008-0958
NCTSoft NCTAudioGrabber2 ActiveX Control - Stack-Based Buffer Overflow
CVE-2008-0959
Alive MP3 WAV Converter 3.9.3.2 - Stack-Based Buffer Overflow in NCTAudioInformation2 ActiveX Control
CVE-2008-1105
Samba 3.0.0-3.0.29 - Remote Code Execution via Crafted SMB Response
CVE-2008-2158
EMC AlphaStor 3.1 SP1 - Remote Code Execution via Crafted TCP Packets
CVE-2008-2499
IBM Lotus Sametime < 7.5.1 CF1 and 8.x < 8.0.1 - Remote Code Execution via Crafted URL
CVE-2008-1767
libxslt <1.1.24 - Buffer Overflow
CVE-2008-2407
Trillian < 3.1.9.0 - Stack-Based Buffer Overflow via FONT Tag Attribute
CVE-2008-2408
Trillian Pro < 3.1.9.0 - Remote Code Execution via Malformed IMG Tag Attribute
CVE-2008-2409
Trillian < 3.1.10.0 - Remote Code Execution via X-MMS-IM-FORMAT Header
CVE-2008-2240
IBM Lotus Domino - Stack-based Buffer Overflow via Accept-Language HTTP Header
CVE-2008-1104
Foxit Reader <2.3.2912 - Buffer Overflow
CVE-2008-2242
CA BrightStor ARCServe Backup 11.0-11.5 - Remote Code Execution via XDR Function Buffer Overflow
CVE-2008-2357
mtr < 0.73 - Remote Code Execution via DNS PTR Record
CVE-2008-0957
PhotoStockPlus Uploader Tool - Stack-Based Buffer Overflow via Initialization Parameters
CVE-2008-2292
Net-SNMP 5.1.4, 5.2.4, 5.4.1 - Buffer Overflow via Large OCTETSTRING in AVP
CVE-2008-1943
XenSource Xen PVFB <3.1.2 - Buffer Overflow
CVE-2008-1944
XenSource Xen PVFB <3.0.3 - Buffer Overflow
CVE-2008-2214
SNMPc < 7.1 - Stack-based Buffer Overflow via Long Community String in SNMP TRAP Packet
CVE-2008-2218
Nortel Multimedia Communication Server < 3.5.8.3 - Denial of Service via Message Flood
CVE-2008-1922
Squid Analysis Report Generator - Stack-Based Buffer Overflow via Crafted Squid Log File
CVE-2008-2161
TFTP Server SP 1.4 and 1.5 - Remote Code Execution via Long TFTP Error Packet
CVE-2008-2149
Wordnet 2.0-3.0 - Stack-based Buffer Overflow via Long Command Line Option
CVE-2008-2145
Novell Client <= 4.91 SP4 - Stack-Based Buffer Overflow via Long Username in Forgotten Password Dialog
Details
Vulnerabilities
14,028
Exploit Likelihood
High