Occurs when a program reads more data from a buffer than the buffer actually contains, causing the program to access memory beyond the intended boundary. This results in reading adjacent memory locations that may contain unrelated or sensitive data.

Reading beyond the bounds of a buffer can expose confidential information stored in nearby memory, such as credentials, encryption keys, or memory addresses. In some cases, this unintended access can also trigger crashes or unstable program behavior if the read operation reaches invalid memory locations.

A buffer over-read condition typically occurs when indexes, pointers, or length values are used without validating that they remain within the valid limits of the buffer. This often happens when trusting externally supplied length values or failing to properly terminate strings.

Remediation:

• Always validate buffer lengths before reading data.
• Ensure indexes and pointer arithmetic remain within valid buffer bounds.
• Do not trust externally supplied size or length values without verification.
• Ensure strings are properly null-terminated before processing.
• Use memory-safe libraries or language features that enforce bounds checking.