Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-788 (在缓冲区结束位置之后访问内存) — Vulnerability Class 140

140 vulnerabilities classified as CWE-788 (在缓冲区结束位置之后访问内存). AI Chinese analysis included.

CWE-788 represents a critical memory safety vulnerability where software accesses memory locations beyond the allocated boundaries of a buffer. This weakness typically arises from improper pointer arithmetic or off-by-one errors during index manipulation, allowing attackers to read sensitive data or write malicious payloads into adjacent memory regions. Exploitation often leads to information disclosure, application crashes, or arbitrary code execution, depending on the memory layout and attacker control. Developers can prevent this by implementing rigorous bounds checking before any memory access, utilizing safe string handling libraries that enforce length limits, and adopting static analysis tools to detect out-of-bounds references during the coding phase. Furthermore, employing memory-safe programming languages or compiler protections like Address Sanitizers helps identify these errors early, ensuring that buffer indices remain strictly within valid limits throughout the application’s lifecycle.

MITRE CWE Description
The product reads or writes to a buffer using an index or pointer that references a memory location after the end of the buffer. This typically occurs when a pointer or its index is incremented to a position after the buffer; or when pointer arithmetic results in a position after the buffer.
Common Consequences (3)
ConfidentialityRead Memory
For an out-of-bounds read, the attacker may have access to sensitive information. If the sensitive information contains system details, such as the current buffer's position in memory, this knowledge can be used to craft further attacks, possibly with more severe consequences.
Integrity, AvailabilityModify Memory, DoS: Crash, Exit, or Restart
Out of bounds memory access will very likely result in the corruption of relevant memory, and perhaps instructions, possibly leading to a crash. Other attacks leading to lack of availability are possible, including putting the program into an infinite loop.
IntegrityModify Memory, Execute Unauthorized Code or Commands
If the memory accessible by the attacker can be effectively controlled, it may be possible to execute arbitrary code, as with a standard buffer overflow. If the attacker can overwrite a pointer's worth of memory (usually 32 or 64 bits), they can redirect a function pointer to their own malicious cod…
Examples (2)
This example takes an IP address from a user, verifies that it is well formed and then looks up the hostname and copies it into a buffer.
void host_lookup(char *user_supplied_addr){ struct hostent *hp; in_addr_t *addr; char hostname[64]; in_addr_t inet_addr(const char *cp); /*routine that ensures user_supplied_addr is in the right format for conversion */ validate_addr_form(user_supplied_addr); addr = inet_addr(user_supplied_addr); hp = gethostbyaddr( addr, sizeof(struct in_addr), AF_INET); strcpy(hostname, hp->h_name); }
Bad · C
In the following example, it is possible to request that memcpy move a much larger segment of memory than assumed:
int returnChunkSize(void *) { /* if chunk info is valid, return the size of usable memory, * else, return -1 to indicate an error */ ... } int main() { ... memcpy(destBuf, srcBuf, (returnChunkSize(destBuf)-1)); ... }
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2021-40794 Adobe Premiere Pro MOV file memory corruption vulnerability could lead to arbitrary code execution — Premiere 7.8 High2022-03-16
CVE-2021-40792 Adobe Premiere Pro WAV file memory corruption vulnerability could lead to arbitrary code execution — Premiere 7.8 -2022-03-16
CVE-2021-42526 Adobe Premiere Elements WAV file memory corruption vulnerability could lead to arbitrary code execution — Premiere Elements 7.8 High2022-03-16
CVE-2021-42527 Adobe Premiere Elements PSD file memory corruption vulnerability could lead to arbitrary code execution — Premiere Elements 7.8 High2022-03-16
CVE-2021-40786 Adobe Premiere Elements M4A file memory corruption vulnerability could lead to arbitrary code execution — Premiere Elements 7.8 High2022-03-16
CVE-2021-40787 Adobe Premiere Elements M4A file memory corruption vulnerability could lead to arbitrary code execution — Premiere Elements 7.8 High2022-03-16
CVE-2021-42724 Adobe Bridge Memory Corruption could lead to Arbitrary code execution — Bridge 7.8 High2022-03-16
CVE-2021-42729 Adobe Bridge Memory Corruption could lead to Arbitrary code execution — Bridge 7.8 High2022-03-16
CVE-2021-40763 Adobe Character Animator Memory Corruption could lead to Arbitrary code execution — Character Animator (Preview 4) 7.8 High2022-03-16
CVE-2021-40764 Adobe Character Animator Memory Corruption could lead to Arbitrary code execution — Character Animator (Preview 4) 7.8 High2022-03-16
CVE-2021-42730 Adobe Bridge Memory Corruption could lead to Arbitrary code execution — Bridge 7.8 High2022-03-16
CVE-2021-40767 Adobe Character Animator Memory Corruption could lead to Application denial-of-service — Character Animator (Preview 4) 5.5 -2022-03-16
CVE-2021-40780 Adobe Media Encoder MXF file memory corruption vulnerability could lead to arbitrary code execution — Media Encoder 7.8 High2022-03-16
CVE-2021-40779 Adobe Media Encoder WAV file memory corruption vulnerability could lead to arbitrary code execution — Media Encoder 7.8 High2022-03-16
CVE-2021-40777 Adobe Media Encoder WAV file memory corruption vulnerability could lead to arbitrary code execution — Media Encoder 7.8 -2022-03-16
CVE-2022-0521 Access of Memory Location After End of Buffer in radareorg/radare2 — radareorg/radare2 7.1 -2022-02-08
CVE-2021-45067 Adobe Acrobat Reader Memory Corruption could lead to Information Disclosure — Acrobat Reader 5.5 Medium2022-01-14
CVE-2021-44712 Adobe Acrobat Reader Memory Corruption could lead to Application denial-of-service — Acrobat Reader 5.5 Medium2022-01-14
CVE-2021-44179 Adobe Dimension GIF File Parsing Memory Corruption Remote Code Execution Vulnerability — Dimension 7.8 -2021-12-20
CVE-2021-43023 Adobe Premiere Rush EPS/TIFF File Memory Corruption Remote Code Execution — Premiere 7.8 -2021-12-20
CVE-2021-43025 Adobe Premiere Rush SVG File Memory Corruption Remote Code Execution — Premiere 7.8 -2021-12-20
CVE-2021-40784 Adobe Premiere Rush WAV File Memory Corruption Remote Code Execution — Premiere Rush 7.8 -2021-12-20
CVE-2021-43022 Adobe Premiere Rush PNG File Memory Corruption Remote Code Execution — Premiere Rush 7.8 High2021-12-20
CVE-2021-43747 Adobe Premiere Rush WAV File Memory Corruption Remote Code Execution — Premiere Rush 7.8 High2021-12-20
CVE-2021-43021 Adobe Premiere Rush EXR File Memory Corruption Remote Code Execution — Premiere Rush 7.8 High2021-12-20
CVE-2021-43029 Adobe Premiere Rush M4A File Memory Corruption Remote Code Execution — Premiere Rush 7.8 High2021-12-20
CVE-2021-40783 Adobe Premiere Rush WAV File Memory Corruption Remote Code Execution — Premiere Rush 7.8 -2021-12-20
CVE-2021-43028 Adobe Premiere Rush M4A File Memory Corruption Remote Code Execution — Premiere Rush 7.8 High2021-12-20
CVE-2021-43026 Adobe Premiere Rush MXF File Memory Corruption Remote Code Execution — Premiere Rush 7.8 High2021-12-20
CVE-2021-43015 Adobe InCopy GIF File Parsing Memory Corruption Arbitrary Code Execution — InCopy 7.8 High2021-11-22

Vulnerabilities classified as CWE-788 (在缓冲区结束位置之后访问内存) represent 140 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.