CWE-120
High likelihoodBuffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Parent: CWE-787 - Out-of-bounds Write
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.
4,106 vulnerabilities with CWE-120
CVE-2006-2935
Linux kernel <2.2.16 - Buffer Overflow
CVE-2006-2492
HIGH
KEV
Microsoft Office < 2006 - Buffer Overflow
CVSS 8.8
CVE-2006-0963
Stlport - Buffer Overflow
CVE-2005-1987
Microsoft Exchange Server - Buffer Overflow
CVE-2004-0455
www-sql <0.5.7 - RCE
CVE-2004-0210
HIGH
KEV
Microsoft Interix - Buffer Overflow
CVSS 7.8
CVE-2004-0150
Python < 2.2.2 - Buffer Overflow
CVE-2003-1228
Mathopd < 1.5 - Buffer Overflow
CVE-2003-1387
Opera Browser - Buffer Overflow
CVE-2003-1388
Opera Browser - Buffer Overflow
CVE-2003-0947
Wireless Tools - Buffer Overflow
CVE-2003-0595
WiTango App Server/Tango 2000 - RCE
CVE-2003-0358
nethack <3.4.0 & falconseye <1.9.3 - Buffer Overflow
CVE-2002-1337
Sendmail <8.12.7 - RCE
CVE-2002-0969
HIGH
Oracle Mysql < 3.23.50 - Buffer Overflow
CVSS 7.8
CVE-2002-0698
Microsoft Exchange Server - Buffer Overflow
CVE-2002-0062
Debian Linux < 5.0 - Buffer Overflow
CVE-2001-0554
MIT Kerberos - Buffer Overflow
CVE-2001-1323
MIT Kerberos 5 <1.2.2 - Buffer Overflow
CVE-2001-0191
Andynorman Gnuserv < 3.12 - Buffer Overflow
CVE-2000-1094
AOL Instant Messenger <4.3.2229 - RCE
CVE-2000-0546
Cygnus Network Security < 4.0 - Buffer Overflow
CVE-2000-0547
Cygnus Network Security < 4.0 - Buffer Overflow
CVE-2000-0548
Cygnus Network Security < 4.0 - Buffer Overflow
CVE-2000-1216
Portmir <AIX 4.3.0 - Buffer Overflow
Details
Vulnerabilities
4,106
Exploit Likelihood
High