CWE-20

High likelihood

Improper Input Validation

Parent: CWE-707 - Improper Neutralization

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

12,638 vulnerabilities with CWE-20
CVE-2011-0981
Google Chrome < 9.0.597.94 - Denial of Service via Animation Event Handling
CVE-2011-0979
Microsoft Excel 2002-2010, Office 2004-2011 for Mac, Open XML Converter - RCE via Malformed Office Art Record
CVE-2011-0647
EMC Replication Manager < 5.3 - Remote Code Execution via irccd.exe RunProgram Function
CVE-2011-0602
Adobe Acrobat Reader < 10.0.1, 9.4.2, 8.2.6 - Remote Code Execution via JP2K Image
CVE-2011-0600
Adobe Acrobat Reader 10.x < 10.0.1, 9.x < 9.4.2, 8.x < 8.2.6 - Remote Code Execution via U3D Parent Node Count
CVE-2011-0599
Adobe Acrobat Reader - Remote Code Execution via Bitmap Parsing in rt3d.dll
CVE-2011-0596
Adobe Acrobat Reader 10.x < 10.0.1, 9.x < 9.4.2, 8.x < 8.2.6 - Remote Code Execution via Crafted RLE_8 Bitmap Dimensions
CVE-2011-0595
Adobe Acrobat Reader 10.x < 10.0.1, 9.x < 9.4.2, 8.x < 8.2.6 - Remote Code Execution via U3D File Decompression
CVE-2011-0594
Adobe Acrobat Reader 8.x-10.x - Remote Code Execution via Font Parsing
CVE-2011-0593
Adobe Reader and Acrobat 10.x < 10.0.1, 9.x < 9.4.2, 8.x < 8.2.6 - Remote Code Execution via U3D File Decompression
CVE-2011-0592
Adobe Acrobat Reader 10.x < 10.0.1, 9.x < 9.4.2, 8.x < 8.2.6 - Remote Code Execution via U3D Texture BMP Decompression
CVE-2011-0591
Adobe Acrobat Reader 8.x < 8.2.6, 9.x < 9.4.2, 10.x < 10.0.1 - Remote Code Execution via U3D Texture Decompression
CVE-2011-0590
Adobe Acrobat Reader 8.x < 8.2.6, 9.x < 9.4.2, 10.x < 10.0.1 - Remote Code Execution via 3D File
CVE-2011-0586
Adobe Acrobat Reader 8.x-10.x - Remote Code Execution
CVE-2011-0581
Adobe ColdFusion 8.0-9.0.1 - HTTP Response Splitting via CRLF Injection
CVE-2011-0033
Microsoft Windows - Remote Code Execution via OpenType Font Parsing
CVE-2011-0924
HP Data Protector - Remote Code Execution via EXEC_CMD File Content Spoofing
CVE-2011-0923
HP Data Protector - Remote Code Execution via EXEC_CMD Argument Injection
CVE-2011-0922
HP Data Protector - Remote Code Execution via EXEC_SETUP Command
CVE-2011-0921
HP Data Protector - Remote Code Execution via Credential Validation Bypass
CVE-2011-0090
Microsoft Windows - Privilege Escalation
CVE-2011-0089
Microsoft Windows XP-7 - Privilege Escalation
CVE-2011-0088
Microsoft Windows XP-7 - Privilege Escalation
CVE-2011-0087
Microsoft Windows XP-Server 2008 - Privilege Escalation
CVE-2011-0086
Microsoft Windows - Privilege Escalation
Details
Vulnerabilities 12,638
Exploit Likelihood High