CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,030 vulnerabilities with CWE-119
CVE-2007-0062
VMware ACE - Remote Code Execution via Malformed DHCP Packet
CVE-2007-4066
libvorbis < 1.2.0 - Buffer Overflow via Crafted OGG File
CVE-2007-5029
Dibbler 0.6.0 - Denial of Service via Buffer Over-Read in TSrvMsg Constructor
CVE-2007-5018
Mercury/32 4.52 - Authenticated Stack-Based Buffer Overflow via IMAP SEARCH ON Command
CVE-2007-5019
Java Web Start ActiveX Control - Buffer Overflow via dnsResolve Method
CVE-2007-3286
Avaya IP Softphone <5.2 and R6.0 - Remote Code Execution via ActiveX Control Buffer Overflow
CVE-2007-4827
Modbus Slave ActiveX Control < 1.4 - Remote Code Execution via Malformed Modbus Requests
CVE-2007-4974
libsndfile < 1.0.17 - Heap-Based Buffer Overflow via FLAC PCM Data
CVE-2007-0326
PNI Digital Media Photo Upload Plugin ActiveX Control < 2.0.0.9 - Stack-Based Buffer Overflow
CVE-2007-4137
Trolltech Qt 3 - Denial of Service via QUtf8Decoder Heap-Based Buffer Overflow
CVE-2007-4938
MPlayer - Heap-based Buffer Overflow via AVI File Indx Truck Size
CVE-2007-4939
Media Player Classic < 6.4.9.0 - Heap-Based Buffer Overflow via AVI File Indx Chunk
CVE-2007-4943
Baofeng Storm < 2.8 - Remote Code Execution via sparser.dll ActiveX Control
CVE-2007-4916
HP Photo and Imaging Gallery - Heap-Based Buffer Overflow via Long First Argument
CVE-2007-4903
Ultra Crypto Component <= 2.0 - Remote Code Execution via CryptoX.dll ActiveX Buffer Overflow
CVE-2007-3739
Redhat Enterprise Linux - Memory Corruption
CVE-2007-1688
Callisto PhotoParade Player - Buffer Overflow via FileVersionof Property
CVE-2007-4727
lighttpd < 1.4.15 - Buffer Overflow via Long Content Length in mod_fastcgi
CVE-2007-4838
CellFactor Revolution < 1.03 - Remote Code Execution via Long Packet String
CVE-2007-3040
Microsoft Windows 2000 - Stack-Based Buffer Overflow in Agent.Control ActiveX Control
CVE-2007-4731
Trend Micro ServerProtect < 5.58 Security Patch 4 - Remote Code Execution via Crafted TCP Packet
CVE-2007-4730
xorg-server - Buffer Overflow in Composite Extension via Pixmap Depth Mismatch
CVE-2007-4814
Microsoft SQL Server - Buffer Overflow via SQLServer ActiveX Control Start Method
CVE-2007-4816
BaoFeng Storm - Multiple Buffer Overflows in ActiveX Control via Long Property Values
CVE-2007-4821
EDraw Office Viewer Component 5.2 - Remote Code Execution via HttpDownloadFileToTempDir Method
Details
Vulnerabilities
14,030
Exploit Likelihood
High