CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,031 vulnerabilities with CWE-119
CVE-2003-1497
Linksys BEFSX41 1.44.3 - Denial of Service via Long Log_Page_Num Variable
CVE-2003-1503
AOL Instant Messenger 5.2.3292 - Remote Code Execution via Long Screen Name in aim:getfile URL
CVE-2003-1508
mIRC 6.12 - Denial of Service via Long Filename in DCC Get Dialog
CVE-2003-1512
mIRC 6.1 and 6.11 - Denial of Service via Long DCC SEND Request
CVE-2003-1514
eMule 0.29c - Denial of Service via Long Password
CVE-2003-1518
Adiscon WinSyslog 4.21 SP1 - Denial of Service via Long Syslog Message
CVE-2003-1557
SpamAssassin 2.40-2.43 - Remote Code Execution via BSMTP Mode Header Parsing
CVE-2003-1558
fnord 1.6 - Buffer Overflow via Long CGI Request
CVE-2003-0662
Microsoft Windows 2000 <SP4 - Buffer Overflow
CVE-2003-0831
ProFTPD <1.2.9rc2 - Buffer Overflow
CVE-2003-0542
Apache HTTP Server - Stack-Based Buffer Overflow via Regular Expression with Excessive Captures
CVE-2003-0373
Nessus < 2.0.6 - Buffer Overflow via Long Arguments in libnasl Functions
CVE-2003-0227
Microsoft Windows Media Services - DoS
CVE-2003-0218
monkey-project/monkey < 0.6.1 - Remote Code Execution via POST Request Buffer Overflow
CVE-2003-0222
Oracle Net Services <9i - Buffer Overflow
CVE-2003-0095
Oracle Database Server 9i, 8i, 8.1.7, 8.0.6 - Remote Code Execution via Long Username
CVE-2003-0096
Oracle Database Server - Buffer Overflow via TO_TIMESTAMP_TZ, TZ_OFFSET, or BFILENAME Function
CVE-2002-1401
PostgreSQL <7.2.3 - Buffer Overflow
CVE-2002-2196
Samba < 2.2.5 - Remote Code Execution via Buffer Overflow in enum_csc_policy
CVE-2002-2226
tftpd32 < 2.21 - Remote Code Execution via Long Filename
CVE-2002-2232
Enceladus Server Suite 3.9 - Remote Code Execution via Long CD Command
CVE-2002-2248
Netscape Communicator - Buffer Overflow via WDefaultFontCharset Constructor
CVE-2002-2250
Sybase Adaptive Server 12.0 and 12.5 - Remote Code Execution via xp_freedll or DBCC CHECKVERIFY Buffer Overflow
CVE-2002-2251
Marcos Luiz Onisto Lib CGI 0.1 - Buffer Overflow in changevalue Function
CVE-2002-2253
Cyrus libSieve < 2.1.2 - Remote Code Execution via Long Header Name or IMAP Flag
Details
Vulnerabilities
14,031
Exploit Likelihood
High