Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-09 | CVE-2019-17402 | Classic Buffer Overflow vulnerability in multiple products Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the offset and size. | 6.5 |
| 2019-10-08 | CVE-2019-17247 | Classic Buffer Overflow vulnerability in Irfanview 4.53 IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEG_LS+0x0000000000007da8. | 7.8 |
| 2019-10-08 | CVE-2019-17244 | Classic Buffer Overflow vulnerability in Irfanview 4.53 IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEG_LS+0x0000000000001d8a. | 7.8 |
| 2019-10-08 | CVE-2019-17243 | Classic Buffer Overflow vulnerability in Irfanview 4.53 IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEG_LS+0x0000000000003155. | 7.8 |
| 2019-10-04 | CVE-2019-17133 | Classic Buffer Overflow vulnerability in multiple products In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow. | 9.8 |
| 2019-10-04 | CVE-2019-17113 | Classic Buffer Overflow vulnerability in Openmpt Libopenmpt In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer overflow. | 9.8 |
| 2019-10-03 | CVE-2019-15166 | Classic Buffer Overflow vulnerability in multiple products lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks. | 7.5 |
| 2019-10-03 | CVE-2018-16301 | Classic Buffer Overflow vulnerability in Tcpdump The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). | 7.8 |
| 2019-10-03 | CVE-2018-14879 | Classic Buffer Overflow vulnerability in multiple products The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file(). | 7.0 |
| 2019-09-30 | CVE-2019-2341 | Classic Buffer Overflow vulnerability in Qualcomm products Buffer overflow when the audio buffer size provided by user is larger than the maximum allowable audio buffer size. | 7.8 |