Oracle : Security Vulnerabilities, CVEs, Published In 2014 (Overflow) CVSS score >= 7
Multiple heap-based buffer overflows in Sound eXchange (SoX) 14.4.1 and earlier allow remote attackers to have unspecified impact via a crafted WAV file to the (1) start_read or (2) AdpcmReadBlock function.
Max CVSS
7.5
EPSS Score
1.90%
Published
2014-12-31
Updated
2019-03-01
Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a large screen size, which triggers a heap-based buffer overflow.
Max CVSS
7.5
EPSS Score
1.01%
Published
2014-09-30
Updated
2020-10-23
The sse2_composite_src_x888_8888 function in Pixman, as used in Cairo in Mozilla Firefox 28.0 and SeaMonkey 2.25 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) by painting on a CANVAS element.
Max CVSS
10.0
EPSS Score
2.06%
Published
2014-04-30
Updated
2018-10-30
Multiple unspecified vulnerabilities in libXtsol in Oracle Solaris 10 and 11.1 have unspecified impact and attack vectors related to "Buffer errors."
Max CVSS
10.0
EPSS Score
0.19%
Published
2014-10-06
Updated
2017-08-29
Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server version string.
Max CVSS
7.5
EPSS Score
95.23%
Published
2014-01-31
Updated
2019-12-17
5 vulnerabilities found