VYPR

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

ClassStableLikelihood: High

Description

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Hierarchy (View 1000)

Related attack patterns (CAPEC)

CAPEC-10 · CAPEC-100 · CAPEC-123 · CAPEC-14 · CAPEC-24 · CAPEC-42 · CAPEC-44 · CAPEC-45 · CAPEC-46 · CAPEC-47 · CAPEC-8 · CAPEC-9

CVEs mapped to this weakness (10,979)

page 159 of 549
  • CVE-2014-9819HigMar 30, 2017
    risk 0.51cvss 7.8epss 0.02

    Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9823.

  • CVE-2014-9817HigMar 30, 2017
    risk 0.51cvss 7.8epss 0.02

    Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file.

  • CVE-2017-6462HigMar 27, 2017
    risk 0.51cvss 7.8epss 0.00

    Buffer overflow in the legacy Datum Programmable Time Server (DPTS) refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted /dev/datum device.

  • CVE-2017-6452HigMar 27, 2017
    risk 0.51cvss 7.8epss 0.00

    Stack-based buffer overflow in the Windows installer for NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via an application path on the command line.

  • CVE-2017-7246HigMar 23, 2017
    risk 0.51cvss 7.8epss 0.03

    Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.

  • CVE-2017-7245HigMar 23, 2017
    risk 0.51cvss 7.8epss 0.02

    Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 4) or possibly have unspecified other impact via a crafted file.

  • CVE-2016-8886HigMar 23, 2017
    risk 0.51cvss 7.8epss 0.02

    The jas_malloc function in libjasper/base/jas_malloc.c in JasPer before 1.900.11 allows remote attackers to have unspecified impact via a crafted file, which triggers a memory allocation failure.

  • CVE-2017-7231HigMar 22, 2017
    risk 0.51cvss 7.8epss 0.01

    pngdefry through 2017-03-22 is prone to a heap-based buffer-overflow vulnerability because it fails to properly process a specially crafted png file. This issue affects the 'process()' function of the 'pngdefry.c' source file.

  • CVE-2014-9835HigMar 22, 2017
    risk 0.51cvss 7.8epss 0.01

    Heap overflow in ImageMagick 6.8.9-9 via a crafted wpf file.

  • CVE-2014-9834HigMar 22, 2017
    risk 0.51cvss 7.8epss 0.01

    Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file.

  • CVE-2014-9833HigMar 22, 2017
    risk 0.51cvss 7.8epss 0.01

    Heap overflow in ImageMagick 6.8.9-9 via a crafted psd file.

  • CVE-2014-9832HigMar 22, 2017
    risk 0.51cvss 7.8epss 0.01

    Heap overflow in ImageMagick 6.8.9-9 via a crafted pcx file.

  • CVE-2012-5361HigMar 20, 2017
    risk 0.51cvss 7.8epss 0.03

    Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted WMV file.

  • CVE-2017-7187HigMar 20, 2017
    risk 0.51cvss 7.8epss 0.00

    The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a large command size in an SG_NEXT_CMD_LEN ioctl call, leading to…

  • CVE-2017-0134HigMar 17, 2017
    risk 0.51cvss 7.5epss 0.26

    A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the…

  • CVE-2017-0133HigMar 17, 2017
    risk 0.51cvss 7.5epss 0.26

    A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the…

  • CVE-2017-0130HigMar 17, 2017
    risk 0.51cvss 7.5epss 0.23

    The scripting engine in Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability." This vulnerability is different…

  • CVE-2017-0102HigMar 17, 2017
    risk 0.51cvss 7.8epss 0.01

    Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2; Windows 7 SP1; Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 let attackers with access to targets systems gain privileges when Windows fails to…

  • CVE-2017-0094HigMar 17, 2017
    risk 0.51cvss 7.5epss 0.32

    A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the…

  • CVE-2017-0071HigMar 17, 2017
    risk 0.51cvss 7.5epss 0.32

    A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the…