VYPR

CWE-787

Out-of-bounds Write

BaseDraftLikelihood: High

Description

The product writes data past the end, or before the beginning, of the intended buffer.

Hierarchy (View 1000)

CVEs mapped to this weakness (2,513)

page 97 of 126
  • CVE-2018-25228MedMar 30, 2026
    risk 0.40cvss 6.2epss 0.00

    NetSetMan 4.7.1 contains a buffer overflow vulnerability in the Workgroup feature that allows local attackers to crash the application by supplying oversized input. Attackers can create a malicious configuration file with excessive data and paste it into the Workgroup field to…

  • CVE-2018-25226MedMar 30, 2026
    risk 0.40cvss 6.2epss 0.00

    FTPShell Server 6.83 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the account name field. Attackers can trigger a denial of service by pasting a 417-byte payload into the 'Account name to…

  • CVE-2019-25648MedMar 26, 2026
    risk 0.40cvss 6.2epss 0.00

    MyVideoConverter Pro 3.14 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying an excessively long string to the registration code input field. Attackers can paste a malicious payload containing 10000 bytes into the 'Copy and…

  • CVE-2019-25644MedMar 24, 2026
    risk 0.40cvss 6.2epss 0.00

    WinMPG Video Convert 9.3.5 and older versions contain a buffer overflow vulnerability in the registration dialog that allows local attackers to crash the application by supplying oversized input. Attackers can paste a large payload of 6000 bytes into the Name and Registration…

  • CVE-2019-25601MedMar 22, 2026
    risk 0.40cvss 6.2epss 0.00

    UltraVNC Launcher 1.2.2.4 contains a buffer overflow vulnerability in the Path vncviewer.exe property field that allows local attackers to crash the application by supplying an excessively long string. Attackers can input a 300-byte payload of repeated characters through the…

  • CVE-2019-25598MedMar 22, 2026
    risk 0.40cvss 6.2epss 0.00

    HeidiSQL Portable 10.1.0.5464 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the password field. Attackers can paste a buffer overflow payload into the password input during Microsoft SQL…

  • CVE-2019-25597MedMar 22, 2026
    risk 0.40cvss 6.2epss 0.00

    NSauditor 3.1.2.0 contains a buffer overflow vulnerability in the SNMP Auditor Community field that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a large payload into the Community field and trigger the Walk function…

  • CVE-2019-25591MedMar 22, 2026
    risk 0.40cvss 6.2epss 0.00

    DNSS Domain Name Search Software 2.1.8 contains a buffer overflow vulnerability in the registration code input field that allows local attackers to crash the application by submitting an excessively long string. Attackers can trigger a denial of service by pasting a malicious…

  • CVE-2019-25589MedMar 22, 2026
    risk 0.40cvss 6.2epss 0.00

    ZOC Terminal 7.23.4 contains a buffer overflow vulnerability in the Shell field of Program Settings that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a crafted payload into the Shell configuration field and trigger…

  • CVE-2019-25567MedMar 21, 2026
    risk 0.40cvss 6.2epss 0.00

    Valentina Studio 9.0.5 Linux contains a buffer overflow vulnerability in the Host field of the connection dialog that allows local attackers to crash the application by supplying an oversized input string. Attackers can trigger the vulnerability by pasting a crafted buffer…

  • CVE-2019-25566MedMar 21, 2026
    risk 0.40cvss 6.2epss 0.00

    TransMac 12.3 contains a buffer overflow vulnerability in the volume name field that allows local attackers to crash the application by supplying an excessively long string. Attackers can create a malicious file with 1000 repeated characters, paste the content into the volume…

  • CVE-2019-25565MedMar 21, 2026
    risk 0.40cvss 6.2epss 0.00

    Magic Iso Maker 5.5 build 281 contains a buffer overflow vulnerability in the Serial Code registration field that allows local attackers to crash the application by submitting an oversized input. Attackers can generate a file containing 5000 bytes of data, paste it into the…

  • CVE-2019-25561MedMar 21, 2026
    risk 0.40cvss 6.2epss 0.00

    Lyric Maker 2.0.1.0 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Title field. Attackers can paste a 5000-byte buffer into the Title input field and save the file to trigger a denial…

  • CVE-2019-25558MedMar 21, 2026
    risk 0.40cvss 6.2epss 0.00

    Selfie Studio 2.17 contains a denial of service vulnerability in the Resize Image function that allows local attackers to crash the application by supplying an excessively long buffer. Attackers can paste a large string of characters into the New Width or New Height field to…

  • CVE-2019-25550MedMar 21, 2026
    risk 0.40cvss 6.2epss 0.00

    Encrypt PDF 2.3 contains a buffer overflow vulnerability that allows local attackers to crash the application by inputting excessively long strings into password fields. Attackers can paste a 1000-byte buffer into the User Password or Master Password field in the Settings dialog…

  • CVE-2019-25549MedMar 21, 2026
    risk 0.40cvss 6.2epss 0.00

    VeryPDF PCL Converter 2.7 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long password string. Attackers can trigger a buffer overflow by entering a 3000-byte password in the PDF Security encryption…

  • CVE-2019-25545MedMar 21, 2026
    risk 0.40cvss 6.2epss 0.00

    Terminal Services Manager 3.2.1 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying an excessively long string in the computer name field. Attackers can input a 5000-byte buffer of data into the 'Computer name or IP address'…

  • CVE-2019-25485MedMar 11, 2026
    risk 0.40cvss 6.2epss 0.00

    R 3.4.4 on Windows x64 contains a buffer overflow vulnerability in the GUI Preferences language menu field that allows local attackers to bypass DEP and ASLR protections. Attackers can inject a crafted payload through the Language for menus preference to trigger a structured…

  • CVE-2019-25484MedMar 11, 2026
    risk 0.40cvss 6.2epss 0.00

    WinMPG iPod Convert 3.0 contains a buffer overflow vulnerability in the Register dialog that allows local attackers to crash the application by supplying an oversized payload. Attackers can paste a large string of characters into the User Name and User Code field to trigger a…

  • CVE-2019-25477MedMar 11, 2026
    risk 0.40cvss 6.2epss 0.00

    RAR Password Recovery 1.80 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload in the registration dialog. Attackers can craft a malicious input string exceeding 6000 bytes and paste it into the User…