CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,031 vulnerabilities with CWE-119
CVE-2003-1374
HP-UX 11.0 - Buffer Overflow via Long Argument to disable Command Options
CVE-2003-1375
HP-UX 10.20-11.11 - Buffer Overflow via Large File Argument in wall
CVE-2003-1377
sircd 0.4.0 and 0.4.4 - Remote Code Execution via Reverse DNS Lookup Buffer Overflow
CVE-2003-1382
ISMail <= 1.4.3 - Remote Code Execution via Long Domain Name in MAIL FROM or RCPT TO Fields
CVE-2003-1393
Gupta SQLBase 8.1.0 - Buffer Overflow via Long EXECUTE Command
CVE-2003-1395
KaZaA Media Desktop 2.0 - Buffer Overflow via Ad Server Response
CVE-2003-1397
Opera Browser 6.05 and 7.0 - Denial of Service via Long String in ShowDocument Method
CVE-2003-1407
Windows NT 4.0 - Buffer Overflow via Long Pathname Argument to cd Command
CVE-2003-1415
NetCharts XBRL Server 4.0.0 - Information Disclosure via Invalid Chunked Transfer Encoding
CVE-2003-1429
Proxomitron Naoko 4.4 - Buffer Overflow via Long Request
CVE-2003-1431
Unreal Engine 226f-436 - Denial of Service via Long Host String in Unreal URL
CVE-2003-1445
Far Manager 1.70beta1 - Stack-based Buffer Overflow via Long Pathname
CVE-2003-1446
Rogue 5.2-2 - Local Buffer Overflow via HOME Environment Variable
CVE-2003-1451
Symantec Norton AntiVirus 2002 - Buffer Overflow via Long Filename in ZIP Attachment
CVE-2003-1455
PoPToP 1.1.4-b1-1.1.4-b3 - Local Buffer Overflow in launch_bcrelay
CVE-2003-1461
HP-UX 11.0 - Buffer Overflow in rwrite via Long Argument
CVE-2003-1464
Siemens M45 and S45 - Denial of Service via Long SMS Image Name
CVE-2003-1470
MDaemon <= 6.7.5 - Authenticated Buffer Overflow via IMAP CREATE Command
CVE-2003-1472
3d-ftp 4.0 - Buffer Overflow via Long FTP Banner
CVE-2003-1473
LTris 1.0.1 - Local Buffer Overflow via HOME Environment Variable
CVE-2003-1477
MAILsweeper for SMTP 4.3.6-4.3.7 - Denial of Service via Corrupt PowerPoint Attachment
CVE-2003-1478
Konqueror - Denial of Service via Malformed Byte Sequence
CVE-2003-1484
Microsoft Internet Explorer 6.0 SP1 - Denial of Service via DHTML AnchorClick with Blank Href
CVE-2003-1494
HP OpenView Network Node Manager 6.2 and 6.4 - Denial of Service via Crafted TCP Packet
CVE-2003-1496
HP Tru64 4.0F-5.1B - Privilege Escalation in CDE dtmailpr
Details
Vulnerabilities 14,031
Exploit Likelihood High