Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-16 | CVE-2017-11013 | Classic Buffer Overflow vulnerability in Google Android In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, countOffset (in function UnpackCore) is increased for each loop, while there is no boundary check against "pIe->arraybound". | 7.8 |
| 2017-10-24 | CVE-2017-15222 | Classic Buffer Overflow vulnerability in Nftp Project Nftp Buffer Overflow vulnerability in Ayukov NFTPD 2.0 and earlier allows remote attackers to execute arbitrary code. | 9.8 |
| 2017-09-21 | CVE-2017-8278 | Classic Buffer Overflow vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, while reading audio data from an unspecified driver, a buffer overflow or integer overflow could occur. | 7.8 |
| 2017-09-14 | CVE-2017-0782 | Classic Buffer Overflow vulnerability in Google Android A remote code execution vulnerability in the Android system (bluetooth). | 8.8 |
| 2017-09-08 | CVE-2017-0767 | Classic Buffer Overflow vulnerability in Google Android A elevation of privilege vulnerability in the Android media framework (libeffects). | 7.8 |
| 2017-08-24 | CVE-2017-12137 | Classic Buffer Overflow vulnerability in multiple products arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS privileges via vectors related to map_grant_ref. | 8.8 |
| 2017-08-16 | CVE-2017-6421 | Classic Buffer Overflow vulnerability in Google Android In the touch controller function in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable may be controlled by the user and can lead to a buffer overflow. | 8.8 |
| 2017-08-11 | CVE-2017-8259 | Classic Buffer Overflow vulnerability in Google Android In the service locator in all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow can occur as the variable set for determining the size of the buffer is not used to indicate the size of the buffer. | 7.8 |
| 2017-08-07 | CVE-2015-7854 | Classic Buffer Overflow vulnerability in multiple products Buffer overflow in the password management functionality in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file. | 8.8 |
| 2017-08-07 | CVE-2015-7853 | Classic Buffer Overflow vulnerability in multiple products The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value. | 9.8 |