CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,031 vulnerabilities with CWE-119
CVE-2005-3653
Broadcom Brightstor Arcserve Backup < 4.0.050615 - Memory Corruption
CVE-2005-3658
EMC Legato NetWorker 7.1.x < 7.1.4 and 7.2.x < 7.2.1.Build.314 - Remote Code Execution via Malformed RPC Packets
CVE-2005-3712
Mac OS X 10.4-10.4.5 - Authenticated Remote Code Execution via rsync Extended Attributes
CVE-2005-3713
Apple Quicktime < 7.0.4 - Remote Code Execution via GIF Netscape Extension Block
CVE-2005-4667
UnZip <= 5.50 - Buffer Overflow via Long Filename Command Line Argument
CVE-2005-4807
GNU Binutils <20050721 - Buffer Overflow
CVE-2005-4840
Outlook Express Address Book Control - Denial of Service via COM Object Instantiation
CVE-2005-4848
BlackBerry Enterprise Server <4.0.20050607 - RCE
CVE-2005-4863
IBM DB2 Universal Database 7.x and 8.1 - Local Stack-Based Buffer Overflow via Long Parameter
CVE-2005-4864
IBM DB2 Universal Database 7.x and 8.1 - Stack-Based Buffer Overflow via DB2LPORT Environment Variable
CVE-2005-4865
IBM DB2 Universal Database 7.x and 8.1 - Remote Code Execution via Long Libname
CVE-2005-4866
IBM DB2 Universal Database 8.1 - Remote Code Execution via JDBC Applet Server Username Handling
CVE-2005-4867
IBM DB2 Universal Database 8.1 - Remote Code Execution via SATENCRYPT Function Buffer Overflow
CVE-2005-4870
IBM DB2 8.1 - Remote Code Execution
CVE-2005-4872
PCRE < 6.1 - Denial of Service via Large Number of Named Subpatterns
CVE-2005-4873
PHPcups <1.1.23rc1 - Buffer Overflow
CVE-2005-3534
nbd < 2.7.5 and 2.8.0-2.8.2 - Remote Code Execution via Large Request Buffer Overflow
CVE-2005-4459
VMWare Workstation <5.5-ACE 1.0.1 - Buffer Overflow
CVE-2005-4267
Qualcomm WorldMail 3.0 - Remote Code Execution via Long IMAP Command
CVE-2005-4444
Pegasus Mail <4.21c,4.30PB1 - Buffer Overflow
CVE-2005-4268
cpio 2.6-8.FC4 - Buffer Overflow via Large File Size Representation
CVE-2005-1929
Trend Micro ServerProtect < 5.58 - Remote Code Execution via Chunked Transfer Request
CVE-2005-4220
Netgear RP114 - Denial of Service via SYN Flood Attack
CVE-2005-4092
Apple iTunes and QuickTime - Remote Code Execution via Crafted .mov File
CVE-2005-3192
Xpdf 3.01 - Heap-Based Buffer Overflow via Out-of-Range numComps Field
Details
Vulnerabilities 14,031
Exploit Likelihood High