CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,335 vulnerabilities with CWE-787
CVE-2014-3484 CRITICAL
musl 0.9.13-1.0.3 - Stack-Based Buffer Overflow in DNS Response Handling
CVSS 9.8
CVE-2014-1947 HIGH
ImageMagick 6.5.4 - Buffer Overflow
CVSS 7.8
CVE-2014-8128 MEDIUM
libtiff < 4.0.4 - Out-of-bounds Write via Crafted TIFF Image
CVSS 6.5
CVE-2014-2030 HIGH
ImageMagick - Stack-based Buffer Overflow in WritePSDImage Function
CVSS 8.8
CVE-2014-8141 HIGH
Info-ZIP UnZip < 6.0 - Heap-based Buffer Overflow via Crafted Zip File
CVSS 7.8
CVE-2014-8322 CRITICAL
aircrack-ng < 1.2 RC 1 - Remote Code Execution via Crafted Length Parameter
CVSS 9.8
CVE-2014-8321 HIGH
aircrack-ng < 1.2 RC 1 - Local Privilege Escalation via GPS Tracker Buffer Overflow
CVSS 7.8
CVE-2014-8140 HIGH
unzip < 6.0 - Remote Code Execution via Crafted Zip File in -t Command Argument
CVSS 7.8
CVE-2014-8139 HIGH
Info-ZIP UnZip < 6.0 - Remote Code Execution via CRC32 Verification Heap Overflow
CVSS 7.8
CVE-2014-2072 CRITICAL
Dassault Systemes Catia V5-6R2013 - Buffer Overflow
CVSS 9.8
CVE-2014-1598 CRITICAL
centurystar 7.12 - Stack Buffer Overflow in ActiveX Control
CVSS 9.8
CVE-2014-0011 CRITICAL
TigerVNC < 1.3.1 - Remote Code Execution via ZRLE Screen Image Rendering
CVSS 9.8
CVE-2014-5439 HIGH
sniffit < 0.3.7 - Stack-based Buffer Overflow via Crafted Configuration File
CVSS 7.8
CVE-2014-5435 CRITICAL
Honeywell Experion PKS R40x < R400.6, R41x < R410.6, R43x < R430.2 - Out-of-bounds Write in dual_onsrv.exe
CVSS 9.8
CVE-2014-2073 CRITICAL
Dassault Systemes CATIA V5-6R2013 - Buffer Overflow
CVSS 9.8
CVE-2014-8129 HIGH
LibTIFF 4.0.3 - Out-of-bounds Write via Crafted TIFF Image
CVSS 8.8
CVE-2014-6184
IBM Tivoli Storage Manager Stack-based Buffer Overflow in dsmtca
CVE-2014-4322
Linux kernel 3.x - Memory Corruption
CVE-2014-3676
shim 0.3-0.8 - Remote Code Execution via Crafted IPv6 Address in TFTP DHCPv6 Boot Option
CVE-2014-4404 HIGH KEV
Mac OS X IOKit Keyboard Driver Root Privilege Escalation
CVSS 7.8
CVE-2014-1525
Firefox < 29.0 and SeaMonkey < 2.26 - Use-After-Free in Text Track Manager
CVE-2014-1523 MEDIUM
Mozilla Firefox < 29.0 - Heap-Based Buffer Overflow via Crafted JPEG Image
CVSS 6.5
CVE-2014-0077
Linux kernel <3.13.10 - DoS/Privilege Escalation
CVE-2014-0133
nginx <1.4.7, <1.5.12 - Buffer Overflow
CVE-2014-1761 HIGH KEV
Microsoft Word <2013 - Memory Corruption
CVSS 7.8
Details
Vulnerabilities 14,335
Exploit Likelihood High