CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,031 vulnerabilities with CWE-119
CVE-2004-2719
Foxmail 5.0.300 - Buffer Overflow via Long From Field in Mail Message
CVE-2004-2727
MailEnable Professional 1.5-1.7 - Denial of Service via Long HTTP GET Request
CVE-2004-2728
Hummingbird Connectivity 7.1 and 9.0 - Authenticated Denial of Service via XCWD Command Buffer Overflow
CVE-2004-0330
Serv-U File Server < 5.0.0.0 - Authenticated Buffer Overflow via MDTM Command
CVE-2004-0836
MySQL <4.0.21, <3.23.49 - Buffer Overflow
CVE-2004-0234
Mailsweeper - Stack-based Buffer Overflow via Long Directory or File Names in LHA Archive
CVE-2004-0416
CVS <1.12.8/<1.11.16 - Memory Corruption
CVE-2004-1371
Oracle Application Server - Stack-based Buffer Overflow via Wrapped Procedure Token
CVE-2004-0123
Windows NT 4.0, 2000, XP, and Server 2003 - Double Free in ASN.1 Library
CVE-2004-0220
OpenBSD < 3.4 - Denial of Service via Malformed ISAKMP Cert Request Payload
CVE-2004-0368
CDE dtlogin - Remote Code Execution
CVE-2004-1992
Serv-U File Server < 5.0.0.6 - Denial of Service via Long -l Parameter
CVE-2003-1592
Novell NetWare FTP Server - Denial of Service via Long Username or Password
CVE-2003-1576
Sun Change Manager 1.0 - Buffer Overflow
CVE-2003-0819
Microsoft Proxy Server - Buffer Overflow via H.323 Traffic
CVE-2003-0903
Microsoft Data Access Components 2.5-2.8 - Remote Code Execution via Malformed UDP Broadcast Response
CVE-2003-1336
mIRC < 6.11 - Remote Code Execution via Long irc:// URL
CVE-2003-1337
Aprelium Abyss Web Server < 1.1.2 - Remote Code Execution via Long HTTP GET Request
CVE-2003-1339
ezmeeting - Stack-based Buffer Overflow via Long GET Request or SwEzModule.dll Parameters
CVE-2003-1354
GameSpy 3D 2.62 - Denial of Service via UDP Amplification
CVE-2003-1355
Battlefield 1942 1.2-1.3 - Buffer Overflow via Remote Console Authentication
CVE-2003-1359
HP-UX 10.0-11.22 - Local Buffer Overflow via stmkfont Command Line Argument
CVE-2003-1360
HP-UX 10.0-10.34 - Buffer Overflow via TERM Environment Variable
CVE-2003-1368
Electrasoft FTP Client 9.49.1 - Buffer Overflow via Long FTP Server Banner
CVE-2003-1369
Save IT Software PTY Bytecatcherftp - Memory Corruption
Details
Vulnerabilities
14,031
Exploit Likelihood
High