CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,030 vulnerabilities with CWE-119
CVE-2007-6386
Trend Micro AntiVirus plus AntiSpyware 2008 - Buffer Overflow
CVE-2007-6387
awApi4.dll 4.0.0.42 - Buffer Overflow
CVE-2007-4706
Apple QuickTime <7.3.1 - Buffer Overflow
CVE-2007-4707
Apple QuickTime < 7.3.1 - Remote Code Execution via Flash Media Handler
CVE-2007-5580
Cisco Security Agent <=5.2.0.238 - Remote Code Execution via Crafted SMB Packet
CVE-2007-6151
Linux Kernel 2.6.23 - Denial of Service via Non-Null-Terminated ioctl Struct
CVE-2007-6195
HP HP-UX <B.11.11,B.11.23 - Buffer Overflow
CVE-2007-6357
Microsoft Office Access - Buffer Overflow
CVE-2007-6377
BadBlue < 2.72b - Remote Code Execution via PassThru Query String Overflow
CVE-2007-5989
Skype < 3.6 GOLD - Remote Code Execution via skype4com URI Handler Heap Corruption
CVE-2007-6015
Samba 3.0.0-3.0.27a - Stack-based Buffer Overflow via Long GETDC String in SAMLOGON Request
CVE-2007-6204
HP OpenView Network Node Manager <7.51 - RCE
CVE-2007-6327
Online Media Technologies AVSMJPEGFILE.DLL 1.1.1.102 - Buffer Overflow
CVE-2007-5007
Balsa - Stack-based Buffer Overflow via IMAP FETCH Response
CVE-2007-0064
Windows Media Format Runtime 7.1-11 & Services 9.1 - RCE via Crafted ASF File
CVE-2007-3039
Microsoft Message Queuing - Stack-based Buffer Overflow via RPC Opnum 0x06
CVE-2007-3895
Microsoft DirectX 7.0-10.0 - Remote Code Execution via Crafted WAV or AVI File
CVE-2007-3901
Microsoft DirectX 7.0-10.0 - Remote Code Execution via SAMI File Parsing
CVE-2007-6315
BarracudaDrive Web Server <3.8 - DoS
CVE-2007-6305
IBM HMC 7 R3.2.0 - Privilege Escalation
CVE-2007-6302
Novell NetMail <3.5.2 - Buffer Overflow
CVE-2007-6109
GNU Emacs - Stack-based Buffer Overflow via Format String Specifier
CVE-2007-6265
avast! Antivirus Home and Professional < 4.7.1098 - Remote Code Execution via Crafted TAR Archive
CVE-2007-6277
Free Lossless Audio Codec libFLAC <1.2.1 - Buffer Overflow
CVE-2007-5769
netkit-ftp 0.17 20040614 and later - Use-After-Free in getreply Function
Details
Vulnerabilities 14,030
Exploit Likelihood High