VYPR

CWE-125

Out-of-bounds Read

BaseDraft

Description

The product reads data past the end, or before the beginning, of the intended buffer.

Hierarchy (View 1000)

Parents

Related attack patterns (CAPEC)

CAPEC-540

CVEs mapped to this weakness (2,466)

page 94 of 124
  • CVE-2017-7939MedApr 18, 2017
    risk 0.36cvss 5.5epss 0.01

    The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.

  • CVE-2017-7854MedApr 13, 2017
    risk 0.36cvss 5.5epss 0.01

    The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.

  • CVE-2017-7716MedApr 12, 2017
    risk 0.36cvss 5.5epss 0.01

    The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.

  • CVE-2017-3053MedApr 12, 2017
    risk 0.36cvss 5.5epss 0.03

    Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have a memory address leak vulnerability in the image conversion engine, related to parsing of the APP13 segment in JPEG files.

  • CVE-2017-3052MedApr 12, 2017
    risk 0.36cvss 5.5epss 0.03

    Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have a memory address leak vulnerability in the image conversion engine, related to parsing of EMF - enhanced meta file format.

  • CVE-2017-3046MedApr 12, 2017
    risk 0.36cvss 5.5epss 0.04

    Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have a memory address leak vulnerability in the JPEG 2000 parser, related to contiguous code-stream parsing.

  • CVE-2017-3045MedApr 12, 2017
    risk 0.36cvss 5.5epss 0.04

    Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have a memory address leak vulnerability in the JPEG 2000 parser, related to the palette box.

  • CVE-2017-7697MedApr 11, 2017
    risk 0.36cvss 5.5epss 0.01

    In libsamplerate before 0.1.9, a buffer over-read occurs in the calc_output_single function in src_sinc.c via a crafted audio file.

  • CVE-2014-8562MedApr 11, 2017
    risk 0.36cvss 5.5epss 0.02

    DCM decode in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read).

  • CVE-2014-8355MedApr 11, 2017
    risk 0.36cvss 5.5epss 0.02

    PCX parser code in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read).

  • CVE-2016-5322MedApr 11, 2017
    risk 0.36cvss 5.5epss 0.02

    The setByteArray function in tif_dir.c in libtiff 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted tiff image.

  • CVE-2017-7623MedApr 10, 2017
    risk 0.36cvss 5.5epss 0.01

    The iwmiffr_convert_row32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.

  • CVE-2017-7612MedApr 9, 2017
    risk 0.36cvss 5.5epss 0.02

    The check_sysv_hash function in elflint.c in elfutils 0.168 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.

  • CVE-2017-7611MedApr 9, 2017
    risk 0.36cvss 5.5epss 0.02

    The check_symtab_shndx function in elflint.c in elfutils 0.168 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.

  • CVE-2017-7610MedApr 9, 2017
    risk 0.36cvss 5.5epss 0.02

    The check_group function in elflint.c in elfutils 0.168 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.

  • CVE-2017-7608MedApr 9, 2017
    risk 0.36cvss 5.5epss 0.02

    The ebl_object_note_type_name function in eblobjnotetypename.c in elfutils 0.168 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.

  • CVE-2017-7607MedApr 9, 2017
    risk 0.36cvss 5.5epss 0.02

    The handle_gnu_hash function in readelf.c in elfutils 0.168 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file.

  • CVE-2017-7454MedApr 6, 2017
    risk 0.36cvss 5.5epss 0.01

    The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.

  • CVE-2017-7379MedApr 3, 2017
    risk 0.36cvss 5.5epss 0.01

    The PoDoFo::PdfSimpleEncoding::ConvertToEncoding function in PdfEncoding.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document.

  • CVE-2017-7378MedApr 3, 2017
    risk 0.36cvss 5.5epss 0.01

    The PoDoFo::PdfPainter::ExpandTabs function in PdfPainter.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted PDF document.