CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

ClassStableLikelihood: High

Description

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Hierarchy (View 1000)

Parents

CWE-118

Children

CWE-125
CWE-466
CWE-786
CWE-787
CWE-788
CWE-805
CWE-822
CWE-823
CWE-824
CWE-825

Related attack patterns (CAPEC)

CAPEC-10 · CAPEC-100 · CAPEC-123 · CAPEC-14 · CAPEC-24 · CAPEC-42 · CAPEC-44 · CAPEC-45 · CAPEC-46 · CAPEC-47 · CAPEC-8 · CAPEC-9

CVEs mapped to this weakness (9,861)

page 494 of 494

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-1999-0332		0.00	—	0.04		Dec 1, 1998	Buffer overflow in NetMeeting allows denial of service and remote command execution.