Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

DATE CVE VULNERABILITY TITLE RISK
2018-08-15 CVE-2018-8342 Classic Buffer Overflow vulnerability in Microsoft Windows 7 and Windows Server 2008
An elevation of privilege vulnerability exists in the Network Driver Interface Specification (NDIS) when ndis.sys fails to check the length of a buffer prior to copying memory to it, aka "Windows NDIS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2008 R2.
local
low complexity
microsoft CWE-120
7.8
7.8
2018-08-02 CVE-2017-16347 Classic Buffer Overflow vulnerability in Insteon HUB Firmware 1012
An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012.
network
low complexity
insteon CWE-120
critical
 9.9
9.9
2018-08-02 CVE-2017-16346 Classic Buffer Overflow vulnerability in Insteon HUB Firmware 1012
An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012.
network
low complexity
insteon CWE-120
critical
 9.9
9.9
2018-08-02 CVE-2017-16345 Classic Buffer Overflow vulnerability in Insteon HUB Firmware 1012
An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012.
network
low complexity
insteon CWE-120
critical
 9.9
9.9
2018-08-02 CVE-2017-16344 Classic Buffer Overflow vulnerability in Insteon HUB Firmware 1012
An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012.
network
low complexity
insteon CWE-120
critical
 9.9
9.9
2018-08-02 CVE-2017-16343 Classic Buffer Overflow vulnerability in Insteon HUB Firmware 1012
An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012.
network
low complexity
insteon CWE-120
critical
 9.9
9.9
2018-08-02 CVE-2017-16342 Classic Buffer Overflow vulnerability in Insteon HUB Firmware 1012
An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012.
network
low complexity
insteon CWE-120
critical
 9.9
9.9
2018-08-02 CVE-2017-16341 Classic Buffer Overflow vulnerability in Insteon HUB Firmware 1012
An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012.
network
low complexity
insteon CWE-120
critical
 9.9
9.9
2018-08-02 CVE-2017-16340 Classic Buffer Overflow vulnerability in Insteon HUB Firmware 1012
An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012.
network
low complexity
insteon CWE-120
critical
 9.9
9.9
2018-08-02 CVE-2017-16339 Classic Buffer Overflow vulnerability in Insteon HUB Firmware 1012
An attacker could send an authenticated HTTP request to trigger this vulnerability in Insteon Hub running firmware version 1012.
network
low complexity
insteon CWE-120
critical
 9.9
9.9