CWE-120
High likelihoodBuffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Parent: CWE-787 - Out-of-bounds Write
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.
4,106 vulnerabilities with CWE-120
CVE-2015-7853
CRITICAL
NTP <4.2.8p4, <4.3.77 - RCE/DoS
CVSS 9.8
CVE-2015-7512
CRITICAL
QEMU - Buffer Overflow
CVSS 9.0
CVE-2015-8126
libpng <1.0.64, <1.2.54, <1.3.x, <1.4.17, <1.5.24, <1.6.19 - Buffer...
CVE-2015-6692
Adobe Acrobat < 10.1.15 - Buffer Overflow
CVE-2015-5093
Adobe Acrobat < 10.1.15 - Buffer Overflow
CVE-2015-3717
SQLite - Buffer Overflow
CVE-2015-0982
Schneider Electric Pelco DS-NVs <7.8.90 - Buffer Overflow
CVE-2015-0973
HIGH
Oracle Solaris < 1.5.20 - Memory Corruption
CVSS 8.8
CVE-2014-1617
MEDIUM
Microsys PROMOTIC 8.2.13 - Buffer Overflow
CVSS 6.5
CVE-2014-8271
MEDIUM
Tianocore Edk2 < svn_16280 - Buffer Overflow
CVSS 6.8
CVE-2014-1958
HIGH
ImageMagick <6.8.8.5 - RCE
CVSS 8.8
CVE-2014-9629
HIGH
VLC media player <2.1.6, <2.2.1 - Buffer Overflow
CVSS 7.8
CVE-2014-9628
HIGH
VLC media player <2.1.6 - Buffer Overflow
CVSS 7.8
CVE-2014-9625
HIGH
VLC media player <2.1.6 - Buffer Overflow
CVSS 7.8
CVE-2014-6310
CRITICAL
CHICKEN <4.9.0.1 - RCE
CVSS 9.8
CVE-2014-3554
Libndp < 1.4 - Buffer Overflow
CVE-2014-0195
OpenSSL DTLS Fragment Buffer Overflow DoS
CVE-2014-1524
CRITICAL
Mozilla Firefox < 29.0 - Buffer Overflow
CVSS 9.8
CVE-2014-1509
HIGH
Mozilla Firefox < 28.0 - Buffer Overflow
CVSS 8.8
CVE-2014-0049
Linux kernel <3.13.6 - RCE
CVE-2013-1424
MEDIUM
Debian Matplotlib < 1.4.2-3.1 - Buffer Overflow
CVSS 5.6
CVE-2013-7173
CRITICAL
Belkin n750 - Buffer Overflow
CVSS 9.8
CVE-2013-3489
HIGH
Mpc-hc < 1.7.0 - Buffer Overflow
CVSS 7.8
CVE-2013-3488
HIGH
Mpc-hc < 1.7.0.7858 - Buffer Overflow
CVSS 7.8
CVE-2013-1595
CRITICAL
Vivotek Pt7135 Firmware - Buffer Overflow
CVSS 9.8
Details
Vulnerabilities
4,106
Exploit Likelihood
High