CWE-787
High likelihoodOut-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
14,335 vulnerabilities with CWE-787
CVE-2009-0733
LittleCMS <1.18beta2 - RCE
CVE-2009-0490
Audacity < 1.3.6 - Stack-based Buffer Overflow in String_parse::get_nonspace_quoted
CVE-2009-0269
Linux Kernel < 2.6.28.1 - Out-of-bounds Write in eCryptfs readlink Error Handling
CVE-2008-5232
Microsoft Windows Media Services <4.1.00.3917 - RCE
CVE-2008-2992
HIGH
KEV
Adobe Acrobat and Reader < 8.1.2 - Remote Code Execution via util.printf Format String
CVSS 7.8
CVE-2008-3471
Microsoft Excel <2007 - Buffer Overflow
CVE-2008-2371
PCRE 7.7 - Heap-Based Buffer Overflow in pcre_compile.c
CVE-2008-3024
QNX Momentics < 6.3.2 - Local Privilege Escalation via Long .pal Filename
CVE-2007-0158
CRITICAL
thttpd 2007 - Out-of-bounds Write
CVSS 9.8
CVE-2007-0899
CRITICAL
libclamav <0.100.0 - Buffer Overflow
CVSS 9.8
CVE-2007-6427
X.Org Xserver < 1.4.1 - Remote Code Execution via XInput Extension Byte Swapping
CVE-2007-5730
QEMU 0.8.2 - Heap-Based Buffer Overflow via Net Socket Listen Option
CVE-2007-4580
BufferZone <2.1, 2.5 - Buffer Overflow
CVE-2007-4278
ESRI ArcSDE 9.2 - Stack-based Buffer Overflow via Large ASCII Number in giomgr Process
CVE-2007-2798
MIT Kerberos 5 < 1.6.1 - Authenticated Stack-Based Buffer Overflow in kadmind rename_principal_2_svc
CVE-2007-1320
QEMU 0.8.2 - Heap-Based Buffer Overflow in Cirrus VGA Extension
CVE-2007-2356
Gimp 2.2.14 - Stack-Based Buffer Overflow in SUNRAS Plugin via RAS File
CVE-2007-0957
MIT Kerberos 5 < 1.6.1 - Authenticated Remote Code Execution via krb5_klog_syslog Buffer Overflow
CVE-2006-20001
HIGH
Apache HTTP Server < 2.4.55 - Out-of-bounds Write via If Header
CVSS 7.5
CVE-2006-6576
Golden FTP Server <1.92 - Buffer Overflow
CVE-2006-4482
PHP < 5.1.5 - Heap-Based Buffer Overflow in str_repeat and wordwrap Functions
CVE-2006-3945
Opera Browser 9 - Denial of Service via CSS Background Property
CVE-2006-3897
Microsoft Internet Explorer 6 - Denial of Service via NMSA.ASFSourceMediaDescription ActiveX Object
CVE-2006-2362
HIGH
GNU Binutils < 2.17 - Buffer Overflow in TekHex Record Handling
CVSS 7.3
CVE-2005-0560
Exchange Server 2000 and 2003 - Remote Code Execution via X-LINK2STATE SMTP Request
Details
Vulnerabilities
14,335
Exploit Likelihood
High