CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,028 vulnerabilities with CWE-119
CVE-2008-0394
Citadel SMTP < 7.10 - Remote Code Execution via Long RCPT TO Command
CVE-2008-0399
Toshiba Surveillix - Remote Code Execution via Long Arguments to SetPort or SetIpAddress Methods
CVE-2008-0401
IBM Tivoli Provisioning Manager for OS Deployment < 5.1.0.2 - Buffer Overflow via Long HTTP Method String
CVE-2008-0392
Microsoft Visual Basic Enterprise Edition 6.0 SP6 - Buffer Overflow via .dsr File ConnectionName or CommandName
CVE-2008-0065
Nullsoft Winamp 5.21-5.51 - Remote Code Execution via Ultravox Streaming Metadata
CVE-2008-0378
NEC SocksCap < 2.40_051231 - Stack-Based Buffer Overflow via Long Hostname
CVE-2008-0380
Digital Data Communications RtspVaPgCtrl ActiveX control 1.1.0.29 - Buffer Overflow via MP4Prefix Property
CVE-2008-0006
X.Org Xserver <1.4.1 - Buffer Overflow
CVE-2008-0364
BitTorrent < 6.0 and uTorrent < 1.7.5 - Buffer Overflow via Long Unicode Client Version String
CVE-2008-0365
CORE FORCE < 0.95.167 - Buffer Overflow via IOCTL or SSDT Hook Handler
CVE-2008-0366
CORE FORCE < 0.95.167 - Denial of Service and Arbitrary Code Execution via SSDT Hook Handler
CVE-2008-0356
Citrix Presentation Server < 4.5, Access Essentials < 2.0, Desktop Server - RCE via IMA Service
CVE-2008-0352
Linux Kernel 2.6.20-2.6.21.1 - Denial of Service via IPv6 Jumbo Payload Hop-by-Hop Option
CVE-2008-0337
MiniWeb HTTP Server 0.8.19 - Remote Code Execution via Long URI
CVE-2008-0027
Cisco Unified Communications Manager 4.0-4.2 - Heap-Based Buffer Overflow in CTL Provider Service
CVE-2008-0295
VLC Media Player < 0.8.6d - Heap-Based Buffer Overflow via Long SDP Data
CVE-2008-0296
VLC Media Player < 0.8.6d - Heap-Based Buffer Overflow via RTSP Long String
CVE-2008-0036
Apple QuickTime < 7.3 - Remote Code Execution via Crafted Compressed PICT Image
CVE-2008-0247
IBM Tivoli Storage Manager Express < 5.3 - Remote Code Execution via Large Length Packet
CVE-2008-0248
StreamAudio ChainCast ProxyManager ActiveX Control - Buffer Overflow via InternalTuneIn Method
CVE-2008-0250
Microsoft Visual InterDev 6.0 SP6 - Buffer Overflow via Long Project Line in Studio Solution File
CVE-2008-0238
xine-lib < 1.1.9 - Remote Code Execution via SDP Attribute Buffer Overflow
CVE-2008-0234
Apple Quicktime < 7.4.1 - Remote Code Execution via RTSP Reason-Phrase Buffer Overflow
CVE-2008-0220
Gateway Weblaunch 1.0.0.1 - Stack-Based Buffer Overflow via DoWebLaunch Method
CVE-2008-0223
JustSystems Ichitaro - Remote Code Execution via Crafted .JTD File
Details
Vulnerabilities
14,028
Exploit Likelihood
High