CWE-121

High likelihood

Stack-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

3,429 vulnerabilities with CWE-121
CVE-2015-1007 HIGH
Opto 22 PAC Project Professional < R9.4008 - Stack-based Buffer Overflow via Crafted Configuration File
CVSS 7.8
CVE-2015-6490 CRITICAL
Allen-Bradley MicroLogix 1100 < 14.000 and 1400 <= 15.003 - Remote Code Execution
CVSS 9.8
CVE-2014-125122 MEDIUM
Linksys WRT120N 1.0.07 - Unauthenticated Stack-based Buffer Overflow via TM_Block_URL Parameter
CVE-2014-125117 CRITICAL
D-Link DSP-W215 1.02 - Unauthenticated Stack-based Buffer Overflow via /common/info.cgi HTTP POST Request
CVSS 9.8
CVE-2014-125114 HIGH
i-Ftp 2.20 - Stack-based Buffer Overflow via Schedule.xml Time Attribute
CVE-2014-8184 HIGH
liblouis 2.5.0-2.5.3 - Stack-based Buffer Overflow in findTable()
CVSS 7.8
CVE-2014-9189 CRITICAL
Honeywell Experion PKS <R430.2 - Buffer Overflow
CVSS 9.8
CVE-2014-9200
Schneider Electric Unity Pro - Buffer Overflow
CVE-2014-9190
Schneider Electric Wonderware InTouch Access Anywhere Server <11.0 ...
CVE-2014-9163 HIGH KEV
Adobe Flash Player <13.0.0.259-15.0.0.246 - Buffer Overflow
CVSS 7.8
CVE-2014-5407
Schneider Electric VAMPSET < 2.2.136 - Denial of Service via Malformed Setting or Disturbance Recording File
CVE-2014-2364
Advantech WebAccess < 7.2 - Remote Code Execution via Long String in ActiveX Control Parameters
CVE-2014-0782
Yokogawa CENTUM CS 1000/3000, VP, Exaopc, B/M9000CS/VP - Remote Code Execution
CVE-2014-0787
WellinTech KingSCADA < 3.1.2.13 - Remote Code Execution via Crafted Packet
CVE-2014-0770
Advantech WebAccess < 7.1 - Remote Code Execution via UserName Parameter Buffer Overflow
CVE-2014-0768
Advantech WebAccess < 7.1 - Remote Code Execution via AccessCode2 Argument Buffer Overflow
CVE-2014-0767
Advantech WebAccess < 7.1 - Remote Code Execution via AccessCode Argument Buffer Overflow
CVE-2014-0766
Advantech WebAccess < 7.1 - Remote Code Execution via NodeName2 Buffer Overflow
CVE-2014-0765
Advantech WebAccess < 7.1 - Remote Code Execution via GotoCmd Argument Buffer Overflow
CVE-2014-0764
Advantech WebAccess < 7.1 - Remote Code Execution via NodeName Parameter Buffer Overflow
CVE-2014-0784
Yokogawa CENTUM CS 3000 < R3.09.50 - Remote Code Execution via Crafted TCP Packet
CVE-2014-0783
Yokogawa CENTUM CS 3000 < R3.09.50 - Remote Code Execution via Crafted TCP Packet
CVE-2014-0774
Schneider Electric OPC Factory Server 3.35 - Local Privilege Escalation via Malformed Config
CVE-2014-0753
Ecava IntegraXor < 4.1.4390 - Denial of Service via DLL Access
CVE-2013-10068 CRITICAL
Foxit Reader Plugin 2.2.1.530 - Buffer Overflow
Details
Vulnerabilities 3,429
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits