The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,638 vulnerabilities with CWE-20
CVE-2010-4195
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via TextXtra Module
CVE-2010-4194
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution via dirapi.dll Input Validation
CVE-2010-4193
Adobe Shockwave Player < 11.5.9.620 - Remote Code Execution
CVE-2010-4727
Smarty <3.0.0 beta 7 - Code Injection
CVE-2010-0111
Symantec AntiVirus Corporate Edition < 10.1 MR10 - Remote Code Execution via UNC Share Pathname
CVE-2010-4256
Linux Kernel < 2.6.37 - Denial of Service via F_SETPIPE_SZ fcntl Call
CVE-2010-4704
FFmpeg < 0.6.1 - Denial of Service via Crafted OGG File in Vorbis Decoder
CVE-2010-4335
CakePHP 1.2.8-1.3.5 - Remote Code Execution via Unserialize in Security Component
CVE-2010-4247
Citrix Xen < 3.3.2 - Denial of Service via Large Production Request Index
CVE-2010-4535
Django < 1.1.3, 1.2.x < 1.2.4, 1.3.x < 1.3 beta 1 - Denial of Service via Password Reset Timestamp
CVE-2010-4687
Cisco IOS < 15.0(1)XA1 - Denial of Service via Simultaneous Call Termination
CVE-2010-4684
Cisco IOS < 15.0(1)XA1 - Denial of Service via TFTP Debugging over IPv6
CVE-2010-2641
Evince < 2.32 - Denial of Service or Remote Code Execution via Crafted DVI Font
CVE-2010-2640
Evince < 2.32 - Denial of Service or Remote Code Execution via PK Font Parser
CVE-2010-4679
Cisco Adaptive Security Appliance Software < 8.2(3) - Denial of Service via OCSP Connection Failure
CVE-2010-4528
libpurple 2.7.6-2.7.8 - Authenticated Denial of Service via Short P2Pv2 Packet
CVE-2010-4163
Linux Kernel < 2.6.36.2 - Denial of Service via Zero-Length I/O Request
CVE-2010-3862
JBoss Remoting 2.2.x-2.2.3.SP3 and 2.5.x-2.5.3.SP1 - Denial of Service via Bisocket Control Connection
CVE-2010-3708
JBoss Enterprise Application Platform and SOA Platform - Remote Code Execution via Serialized Class File Embedding
CVE-2010-3268
Intel Alert Management System <11 - DoS
CVE-2010-4575
Google Chrome < 8.0.552.224 and Chrome OS < 8.0.552.343 - Denial of Service via ThemeInstalledInfoBarDelegate
CVE-2010-0114
Symantec Endpoint Protection Manager < 11 RU6 MP2 - Remote Code Execution via fw_charts.php Report Generation
CVE-2010-3616
ISC DHCP 4.2 - Denial of Service via Failover Peer Port Access
CVE-2010-4553
IBM Lotus Notes Traveler < 8.5.1.1 - Denial of Service via MIME Type Handling
CVE-2010-4550
IBM Lotus Notes Traveler < 8.5.1.3 - Denial of Service via Malformed Document
Details
Vulnerabilities
12,638
Exploit Likelihood
High