CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,328 vulnerabilities with CWE-476
CVE-2011-2849
Google Chrome < 14.0.835.163 - Denial of Service via WebSockets NULL Pointer Dereference
CVE-2011-2184
Linux Kernel < 2.6.39.1 - Denial of Service via KEYCTL_SESSION_TO_PARENT Keyctl Argument
CVE-2011-1771 HIGH
Linux Kernel < 2.6.39 - Denial of Service via CIFS O_DIRECT Flag Handling
CVSS 7.8
CVE-2011-2928
Linux Kernel < 3.1 - Denial of Service via Malformed Be Filesystem Long Symlink
CVE-2011-1093
Linux Kernel < 2.6.38 - Denial of Service via DCCP Packet Handling
CVE-2011-2691 MEDIUM
libpng 1.0.0-1.0.54, 1.2.0-1.2.44, 1.4.0-1.4.7, 1.5.0-1.5.3 - Denial of Service via NULL Pointer Dereference in png_err
CVSS 6.5
CVE-2011-1887 HIGH
Microsoft Windows - Privilege Escalation
CVSS 7.8
CVE-2011-1881 HIGH
Microsoft Windows - Privilege Escalation
CVSS 8.4
CVE-2011-1282 HIGH
Windows CSRSS - Local Privilege Escalation via Memory Initialization Flaw
CVSS 8.4
CVE-2011-1752
Apache Subversion < 1.6.17 - Denial of Service via mod_dav_svn Baselined WebDAV Resource Request
CVE-2011-1271 HIGH
Microsoft .NET Framework 3.5 Gold/SP1, 3.5.1, 4.0 - Remote Code Execution via JIT Compiler Null String Handling
CVSS 7.7
CVE-2011-1748
Linux Kernel < 2.6.39 - Denial of Service via Raw Socket Release Operation
CVE-2011-1598
Linux Kernel < 2.6.39 - Denial of Service via BCM Socket Release Operation
CVE-2011-1691
Google Chrome < 11.0.696.43 - Denial of Service via CSS Counter Access
CVE-2011-1231 HIGH
Windows Kernel win32k.sys - Local Privilege Escalation via NULL Pointer Dereference
CVSS 8.4
CVE-2011-1229
Windows XP/Server 2003/Vista/Server 2008/7 Privilege Escalation via win32k.sys NULL Pointer Dereference
CVE-2011-0676 HIGH
Windows XP/2003/Vista/2008/7 - Local Privilege Escalation via win32k.sys NULL Pointer Dereference
CVSS 7.8
CVE-2011-0709 HIGH
Linux Kernel < 2.6.35-rc5 - Denial of Service via IGMP Packet Handling
CVSS 7.5
CVE-2010-4816 HIGH
FreeBSD <8.0, 6.3, 4.9 & OpenBSD 4.6 - DoS
CVSS 7.5
CVE-2010-5304 HIGH
LibVNCServer <0.9.9 - NULL Pointer Dereference
CVSS 7.5
CVE-2010-3048 HIGH
Cisco Unified Personal Communicator 7.0 - DoS
CVSS 7.5
CVE-2010-2488 HIGH
ZNC < 0.092 - Unauthenticated NULL Pointer Dereference via Traffic Stats
CVSS 7.5
CVE-2010-2222 HIGH
Red Hat Directory Server 8 and 389 Directory Server - Denial of Service via Crafted Search Query
CVSS 7.5
CVE-2010-0206 MEDIUM
xpdf - Denial of Service via JBIG2 PDF Stream Processing
CVSS 5.5
CVE-2010-4263
Linux Kernel < 2.6.34 - Denial of Service via VLAN Tagged Frame in igb_receive_skb
Details
Vulnerabilities 5,328
Exploit Likelihood Medium