CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,031 vulnerabilities with CWE-119
CVE-2006-6884
WinZip 10.0 Build 6667 - Buffer Overflow
CVE-2006-6749
OpenSER 1.1.0 - Buffer Overflow via Long str Parameter in parse_expression
CVE-2006-6696
Microsoft Windows < Vista - Privilege Escalation
CVE-2006-6684
Pedro Lineu Orso chetcpasswd <2.4 - Buffer Overflow
CVE-2006-6685
Pedro Lineu Orso chetcpasswd <2.3.3 - Buffer Overflow
CVE-2006-6652
NetBSD-current <20050914 - NetBSD libc - RCE
CVE-2006-6500
Firefox 1.5-1.5.0.8 and 2.x < 2.0.0.1 - Heap-Based Buffer Overflow via CSS Cursor Image Conversion
CVE-2006-6106
Linux Kernel 2.4.22-2.4.33.4 and 2.6.2-2.6.18.6 - Buffer Overflow via Bluetooth CAPI Message
CVE-2006-5579
Microsoft Internet Explorer 6 - Remote Code Execution via JavaScript Error Handling
CVE-2006-6418
HP Tru64 UNIX <5.1A - Buffer Overflow
CVE-2006-6442
AOL Client Software - Stack-based Buffer Overflow via SetClientInfo ClientId Argument
CVE-2006-6400
JustSystems Hanako 2004-2006 - Buffer Overflow via Keyword or Title Field
CVE-2006-6396
BlazeVideo HDTV Player <3.5 - Buffer Overflow
CVE-2006-6361
Bitflux Upload Progress Meter <8276 - Buffer Overflow
CVE-2006-6291
MailEnable Professional/Enterprise 1.6-2.33 Authenticated DoS via IMAP DELETE
CVE-2006-6293
F-Prot Antivirus <4.6.7 - Buffer Overflow
CVE-2006-6288
Niek Albers CoolPlayer <216 - Buffer Overflow
CVE-2006-6199
BlazeVideo BlazeDVD Standard and Professional 5.0 - Stack-based Buffer Overflow via PLF Playlist Filename
CVE-2006-6183
3Com 3CTftpSvc < 2.0.1 - Stack-Based Buffer Overflow via Long Mode Field in GET or PUT Command
CVE-2006-4514
libgsf < 1.14.2 - Heap-Based Buffer Overflow via Large num_metabat Value in OLE Document
CVE-2006-6133
Crystal Reports XI - Stack-based Buffer Overflow via Crafted RPT File
CVE-2006-6134
Windows Media Player - Heap-based Buffer Overflow via ASX PlayList REF Element
CVE-2006-6125
NetGear WG311v1 - Heap-Based Buffer Overflow via 802.11 Management Frame with Long SSID
CVE-2006-6026
Helix Server < 11.1.3 and Helix DNA Server 11.0-11.1 - Heap-Based Buffer Overflow via DESCRIBE Request
CVE-2006-4687
Microsoft Internet Explorer <6 - RCE
Details
Vulnerabilities 14,031
Exploit Likelihood High