CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,030 vulnerabilities with CWE-119
CVE-2007-6701
Novell Client 4.91 SP4 - Buffer Overflow
CVE-2007-5602
SwiftView Viewer < 8.3.4 - Remote Code Execution via Stack-Based Buffer Overflow
CVE-2007-6699
AIM PicEditor 9.5.1.8 - Buffer Overflow
CVE-2007-6697
SDL_image < 1.2.6 - Buffer Overflow in LWZReadByte Function
CVE-2007-5764
IBM AIX 5.2, 5.3, 6.1 - Buffer Overflow via pioout Command Line Option
CVE-2007-6425
HP-UX B.11.31 - Denial of Service via ARPA Transport
CVE-2007-6681
VLC < 0.8.6d - Remote Code Execution via Long Subtitle in MicroDvd SSA or Vplayer File
CVE-2007-5655
TIBCO RTworks < 4.0.3 and SmartSockets RTserver < 6.8.0 - Remote Code Execution via Crafted Request Pointer Values
CVE-2007-6250
AOL AOLMediaPlaybackControl - Buffer Overflow
CVE-2007-6531
Xfce < 4.4.2 - Stack-based Buffer Overflow in Panel Launcher Tooltips
CVE-2007-6532
Xfce <4.4.2 - Remote Code Execution
CVE-2007-5360
OpenPegasus Management Server - Buffer Overflow via PAM Authentication
CVE-2007-6654
Macrovision InstallShield Update Service Web Agent 5.1.100.47363 - Buffer Overflow via ProductCode
CVE-2007-6626
LScube Feng <= 0.1.15 - Remote Code Execution via RTSP Response Line Overflow
CVE-2007-6631
LScube libnemesi < 0.6.4-rc1 - Remote Code Execution via Long RTSP Headers
CVE-2007-6613
GNU Compact Disc Input and Control Library <0.79 - Buffer Overflow
CVE-2007-6605
SkyFexClient <1.0 - Buffer Overflow
CVE-2007-6609
CoolPlayer 217 - Stack-Based Buffer Overflow via OGG Vorbis Tag Parsing
CVE-2007-6593
Autonomy KeyView SDK - Buffer Overflow
CVE-2007-6561
PDFLib - Stack-Based Buffer Overflow via Long Filename in PDF_load_image Function
CVE-2007-6562
tcpreen < 1.4.3 - Denial of Service via FD_SET Buffer Overflow
CVE-2007-6563
WinAce < 2.65 - Heap-Based Buffer Overflow via Long Filename in UUE Archive
CVE-2007-6533
Zoom Player 6.00 beta 2 - Buffer Overflow via Crafted ZPL File
CVE-2007-6535
Yahoo! Toolbar <2006.8.15.1 - Buffer Overflow
CVE-2007-6537
WinUAE <= 1.4.4 - Stack-based Buffer Overflow via Long Filename in Gzipped Archive
Details
Vulnerabilities 14,030
Exploit Likelihood High