CVE Daily
← All tags

Tag: Buffer Overflow

All CVEs associated with "Buffer Overflow". Page 160/160 • 19109 CVEs.

Subscribe CVEs: RSS for “Buffer Overflow”  ·  RSS (High+Critical only)

About “Buffer Overflow”

A curated feed of “Buffer Overflow”-related CVEs appears below. We currently track 19109 CVEs for this tag (all time). In the last 365 days, 2728 were published. Average CVSS is 7.9 (all time; 8.0 over 365d), and 78% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer, CWE-121 - Stack-based Buffer Overflow, CWE-122 - Heap-based Buffer Overflow.

In our taxonomy this topic maps to a HIGH impact class. Common exploitation patterns for this weakness can lead to high. Use the filters to triage high risk first and validate exposure in your environment. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.

CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).

CVSS ≥ 0.0
1997-02-13
High

CVE-1999-0041

Buffer overflow in NLS (Natural Language Service).

CVSS: 7.5 CWE: N/A View on NVD
1997-02-10
High

CVE-1999-0109

Buffer overflow in ffbconfig in Solaris 2.5.1.

CVSS: 7.2 CWE: N/A View on NVD
1997-02-06
Critical

CVE-1999-0046

Buffer overflow of rlogin program using TERM environmental variable.

CVSS: 10.0 CWE: CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') View on NVD
1997-02-01
High

CVE-1999-0369

The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access.

CVSS: 7.2 CWE: N/A View on NVD
1997-01-28
Critical

CVE-1999-0047

MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.

CVSS: 10.0 CWE: N/A View on NVD
1997-01-27
High

CVE-1999-0966

Buffer overflow in Solaris getopt in libc allows local users to gain root privileges via a long argv[0].

CVSS: 7.2 CWE: N/A View on NVD
1997-01-01
High

CVE-1999-0178

Buffer overflow in the win-c-sample program (win-c-sample.exe) in the WebSite web server 1.1e allows remote attackers to execute arbitrary code via a long query string.

CVSS: 7.5 CWE: N/A View on NVD
High

CVE-1999-0252

Buffer overflow in listserv allows arbitrary command execution.

CVSS: 7.5 CWE: N/A View on NVD
1996-12-19
High

CVE-1999-1385

Buffer overflow in ppp program in FreeBSD 2.1 and earlier allows local users to gain privileges via a long HOME environment variable.

CVSS: 7.2 CWE: N/A View on NVD
1996-12-13
High

CVE-1999-1089

Buffer overflow in chfn command in HP-UX 9.X through 10.20 allows local users to gain privileges via a long command line argument.

CVSS: 7.2 CWE: N/A View on NVD
1996-12-12
High

CVE-1999-0297

Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.

CVSS: 7.2 CWE: N/A View on NVD
1996-12-10
Critical

CVE-1999-0101

Buffer overflow in AIX and Solaris "gethostbyname" library call allows root access through corrupt DNS host names.

CVSS: 10.0 CWE: N/A View on NVD
1996-12-01
High

CVE-1999-0050

Buffer overflow in HP-UX newgrp program.

CVSS: 7.2 CWE: N/A View on NVD
1996-11-26
High

CVE-1999-1240

Buffer overflow in cddbd CD database server allows remote attackers to execute arbitrary commands via a long log message.

CVSS: 7.5 CWE: N/A View on NVD
1996-11-01
High

CVE-1999-0336

Buffer overflow in mstm in HP-UX allows local users to gain root access.

CVSS: 7.2 CWE: N/A View on NVD
1996-10-25
High

CVE-1999-0032

Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.

CVSS: 7.2 CWE: N/A View on NVD
1996-10-01
Critical

CVE-1999-0206

MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access.

CVSS: 10.0 CWE: N/A View on NVD
High

CVE-1999-0319

Buffer overflow in xmcd 2.1 allows local users to gain access through a user resource setting.

CVSS: 7.2 CWE: N/A View on NVD
1996-09-11
High

CVE-1999-0131

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

CVSS: 7.2 CWE: N/A View on NVD
1996-08-21
High

CVE-1999-0085

Buffer overflow in rwhod on AIX and other operating systems allows remote attackers to execute arbitrary code via a UDP packet with a long hostname.

CVSS: 7.5 CWE: N/A View on NVD
1996-07-24
High

CVE-1999-0023

Local user gains root privileges via buffer overflow in rdist, via lookup() function.

CVSS: 7.2 CWE: N/A View on NVD
1996-07-09
High

CVE-1999-0137

The dip program on many Linux systems allows local users to gain root access via a buffer overflow.

CVSS: 7.2 CWE: N/A View on NVD
1996-07-03
High

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

CVSS: 7.8 CWE: CWE-125 - Out-of-bounds Read View on NVD
1995-12-01
High

CVE-1999-0316

Buffer overflow in Linux splitvt command gives root access to local users.

CVSS: 7.2 CWE: N/A View on NVD
1995-10-19
Critical

CVE-1999-0099

Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.

CVSS: 10.0 CWE: N/A View on NVD
1995-02-17
Critical

CVE-1999-0235

Buffer overflow in NCSA WebServer (1.4.1 and below) gives remote access.

CVSS: 10.0 CWE: N/A View on NVD
1995-02-01
Critical

CVE-1999-0232

Buffer overflow in NCSA WebServer (version 1.5c) gives remote access.

CVSS: 10.0 CWE: N/A View on NVD
1990-05-09
High

CVE-2000-0388

Buffer overflow in FreeBSD libmytinfo library allows local users to execute commands via a long TERMCAP environmental variable.

CVSS: 7.5 CWE: N/A View on NVD
1989-01-01
High

CVE-1999-1471

Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain root privileges by specifying a long shell or GECOS field.

CVSS: 7.2 CWE: N/A View on NVD