Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
1.8
CVSSv2

CVE-2013-0179

Published: 13/01/2014 Updated: 25/03/2018
CVSS v2 Base Score: 1.8 | Impact Score: 2.9 | Exploitability Score: 3.2
VMScore: 160
Vector: AV:A/AC:H/Au:N/C:N/I:N/A:P
Subscribe to Memcached

Vulnerability Summary

The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions prior to 1.4.17, when running in verbose mode, allows remote malicious users to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator in the key and triggers a buffer over-read when printing to stderr.

Vulnerable Product Search on Vulmon Subscribe to Product

memcached memcached 1.4.10

memcached memcached 1.4.11

memcached memcached 1.4.8

memcached memcached 1.4.9

memcached memcached 1.4.16

memcached memcached 1.4.4

memcached memcached 1.4.6

memcached memcached 1.4.7

memcached memcached 1.4.14

memcached memcached 1.4.15

memcached memcached 1.4.5

memcached memcached 1.4.12

memcached memcached 1.4.13

Vendor Advisories

Ubuntu Security Notice: memcached vulnerabilities
Several security issues were fixed in Memcached ...
Debian CVElist Bug Report Logs: memcached: CVE-2011-4971: remote denial of service
Debian Bug report logs - #706426 memcached: CVE-2011-4971: remote denial of service Package: memcached; Maintainer for memcached is Guillaume Delacour <gui@iroqwaorg>; Source for memcached is src:memcached (PTS, buildd, popcon) Reported by: Henri Salo <henri@nervfi> Date: Tue, 30 Apr 2013 06:30:02 UTC Severity: im ...
Debian CVElist Bug Report Logs: memcached: CVE-2013-0179
Debian Bug report logs - #698231 memcached: CVE-2013-0179 Package: memcached; Maintainer for memcached is Guillaume Delacour <gui@iroqwaorg>; Source for memcached is src:memcached (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@inutilorg> Date: Tue, 15 Jan 2013 16:33:02 UTC Severity: grave Tags: patch, ...
Debian Security Advisories: DSA-2832-1 memcached -- several vulnerabilities
Multiple vulnerabilities have been found in memcached, a high-performance memory object caching system The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2011-4971 Stefan Bucur reported that memcached could be caused to crash by sending a specially crafted packet CVE-2013-7239 It was reported that S ...

References

CWE-119https://code.google.com/p/memcached/issues/detail?id=306http://www.openwall.com/lists/oss-security/2013/01/14/4http://secunia.com/advisories/56183https://bugzilla.redhat.com/show_bug.cgi?id=895054https://code.google.com/p/memcached/wiki/ReleaseNotes1417http://www.openwall.com/lists/oss-security/2013/01/14/6https://code.google.com/p/memcached/issues/attachmentText?id=306&aid=3060004000&name=0001-Fix-buffer-overrun-when-logging-key-to-delete-in-bin.patch&token=3GEzHThBL5cxmUrsYANkW03RrNY%3A1358179503096http://www.ubuntu.com/usn/USN-2080-1http://www.securityfocus.com/bid/64978https://nvd.nist.govhttps://usn.ubuntu.com/2080-1/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook