Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-1494HistoryApr 30, 2009 - 8:30 p.m.
CVE-2009-1494
2009-04-3020:30:00
Debian Security Bug Tracker
security-tracker.debian.org
5
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.006 Low
EPSS
Percentile
77.3%
The process_stat function in Memcached 1.2.8 discloses memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain potentially sensitive information by sending this command to the daemon’s TCP port.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | memcached | < 1.2.8-1 | memcached_1.2.8-1_all.deb |
| Debian | 11 | all | memcached | < 1.2.8-1 | memcached_1.2.8-1_all.deb |
| Debian | 10 | all | memcached | < 1.2.8-1 | memcached_1.2.8-1_all.deb |
| Debian | 999 | all | memcached | < 1.2.8-1 | memcached_1.2.8-1_all.deb |
| Debian | 13 | all | memcached | < 1.2.8-1 | memcached_1.2.8-1_all.deb |
Related
cve
cve
CVE-2009-1494
2009-04-30 20:30:00
prion
prion
Command injection
2009-04-30 20:30:00
ubuntucve
ubuntucve
CVE-2009-1494
2009-04-30 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : memcached (MDVSA-2009:105)
2009-05-05 00:00:00
openSUSE 10 Security Update : memcached (memcached-6397)
2009-10-06 00:00:00
openSUSE Security Update : memcached (memcached-1165)
2009-08-11 00:00:00
openvas
openvas
Mandrake Security Advisory MDVSA-2009:105 (memcached)
2009-06-05 00:00:00
Memcached Information Disclosure Vulnerabilities
2009-05-18 00:00:00
Mandrake Security Advisory MDVSA-2009:105 (memcached)
2009-06-05 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.006 Low
EPSS
Percentile
77.3%
Related for DEBIANCVE:CVE-2009-1494