CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,335 vulnerabilities with CWE-787
CVE-2015-8656 HIGH
Adobe Flash Player < 18.0.0.268, 19.x-20.x < 20.0.0.228, AIR < 20.0.0.204 - Remote Code Execution via MPEG-4 Data
CVSS 8.8
CVE-2015-8654 HIGH
Adobe Flash Player < 18.0.0.268, 19.x-20.x < 20.0.0.228, AIR < 20.0.0.204 - Remote Code Execution via MPEG-4 Data
CVSS 8.8
CVE-2015-8652 HIGH
Adobe Flash Player < 18.0.0.268, 19.x-20.x < 20.0.0.228, AIR < 20.0.0.204 - Remote Code Execution via MPEG-4 Data
CVSS 8.8
CVE-2015-8782 MEDIUM
Debian Linux < 4.0.7 - Out-of-Bounds Write
CVSS 6.5
CVE-2015-8781 MEDIUM
Debian Linux < 4.0.7 - Out-of-Bounds Write
CVSS 6.5
CVE-2015-8668 CRITICAL
libtiff < 4.0.6 - Remote Code Execution via BMP Width Field
CVSS 9.8
CVE-2015-8458
Adobe Reader/Acrobat <10.1.16,11.0.13 - Buffer Overflow
CVE-2015-6698
Adobe Acrobat < 10.1.15 - Out-of-Bounds Write
CVE-2015-6696
Adobe Acrobat < 10.1.15 - Out-of-Bounds Write
CVE-2015-6048
Microsoft Internet Explorer <11 - Code Injection
CVE-2015-2502 HIGH KEV
Internet Explorer 7-11 - Remote Code Execution via Memory Corruption
CVSS 8.8
CVE-2015-1642 HIGH KEV
Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 - Remote Code Execution via Crafted Document
CVSS 7.8
CVE-2015-5110
Adobe Acrobat/Reader Remote Code Execution (10.x < 10.1.15, 11.x < 11.0.12, DC < 2015.006.30060/2015.008.20082)
CVE-2015-5105
Adobe Acrobat and Reader Remote Code Execution via Heap-Based Buffer Overflow
CVE-2015-5098
Adobe Acrobat/Reader Remote Code Execution via Heap-Based Buffer Overflow
CVE-2015-5096
Adobe Acrobat and Reader Remote Code Execution via Heap-Based Buffer Overflow
CVE-2015-2387 HIGH KEV
Windows - Out-of-bounds Write in ATMFD.DLL
CVSS 7.8
CVE-2015-2425 HIGH KEV
Internet Explorer 11 - Remote Code Execution via Memory Corruption
CVSS 8.8
CVE-2015-2424 HIGH KEV
Microsoft Office - Remote Code Execution via Crafted Office Document
CVSS 8.8
CVE-2015-2419 HIGH KEV
Internet Explorer 10 and 11 - Remote Code Execution via JScript9 Memory Corruption
CVSS 8.8
CVE-2015-3113 CRITICAL KEV
Adobe Flash Player Nellymoser Audio Decoding Buffer Overflow
CVSS 9.8
CVE-2015-3209
QEMU < 2.3.1 - Remote Code Execution via PCNET Controller Packet Handling
CVE-2015-1774
Canonical Ubuntu Linux < 4.1.1 - Out-of-Bounds Write
CVE-2015-3043 CRITICAL KEV
Adobe Flash Player <14.x - Memory Corruption
CVSS 9.8
CVE-2015-1641 HIGH KEV
Microsoft Office - Remote Code Execution via Crafted RTF Document
CVSS 7.8
Details
Vulnerabilities 14,335
Exploit Likelihood High