Lucene search

[email protected]NVD:CVE-2013-0179

HistoryJan 13, 2014 - 9:55 p.m.

CVE-2013-0179

2014-01-1321:55:05

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

1.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:A/AC:H/Au:N/C:N/I:N/A:P

AI Score

7.4

Confidence

High

EPSS

0.016

Percentile

87.4%

JSON

The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator in the key and triggers a buffer over-read when printing to stderr.

Affected configurations

Nvd

Node

memcachedmemcachedMatch1.4.4

memcachedmemcachedMatch1.4.5

memcachedmemcachedMatch1.4.6

memcachedmemcachedMatch1.4.7

memcachedmemcachedMatch1.4.8

memcachedmemcachedMatch1.4.9

memcachedmemcachedMatch1.4.10

memcachedmemcachedMatch1.4.11

memcachedmemcachedMatch1.4.12

memcachedmemcachedMatch1.4.13

memcachedmemcachedMatch1.4.14

memcachedmemcachedMatch1.4.15

memcachedmemcachedMatch1.4.16

VendorProductVersionCPE
memcachedmemcached1.4.4cpe:2.3:a:memcached:memcached:1.4.4:*:*:*:*:*:*:*
memcachedmemcached1.4.5cpe:2.3:a:memcached:memcached:1.4.5:*:*:*:*:*:*:*
memcachedmemcached1.4.6cpe:2.3:a:memcached:memcached:1.4.6:*:*:*:*:*:*:*
memcachedmemcached1.4.7cpe:2.3:a:memcached:memcached:1.4.7:*:*:*:*:*:*:*
memcachedmemcached1.4.8cpe:2.3:a:memcached:memcached:1.4.8:*:*:*:*:*:*:*
memcachedmemcached1.4.9cpe:2.3:a:memcached:memcached:1.4.9:*:*:*:*:*:*:*
memcachedmemcached1.4.10cpe:2.3:a:memcached:memcached:1.4.10:*:*:*:*:*:*:*
memcachedmemcached1.4.11cpe:2.3:a:memcached:memcached:1.4.11:*:*:*:*:*:*:*
memcachedmemcached1.4.12cpe:2.3:a:memcached:memcached:1.4.12:*:*:*:*:*:*:*
memcachedmemcached1.4.13cpe:2.3:a:memcached:memcached:1.4.13:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
memcached	memcached	1.4.4	cpe:2.3:a:memcached:memcached:1.4.4:::::::*
memcached	memcached	1.4.5	cpe:2.3:a:memcached:memcached:1.4.5:::::::*
memcached	memcached	1.4.6	cpe:2.3:a:memcached:memcached:1.4.6:::::::*
memcached	memcached	1.4.7	cpe:2.3:a:memcached:memcached:1.4.7:::::::*
memcached	memcached	1.4.8	cpe:2.3:a:memcached:memcached:1.4.8:::::::*
memcached	memcached	1.4.9	cpe:2.3:a:memcached:memcached:1.4.9:::::::*
memcached	memcached	1.4.10	cpe:2.3:a:memcached:memcached:1.4.10:::::::*
memcached	memcached	1.4.11	cpe:2.3:a:memcached:memcached:1.4.11:::::::*
memcached	memcached	1.4.12	cpe:2.3:a:memcached:memcached:1.4.12:::::::*
memcached	memcached	1.4.13	cpe:2.3:a:memcached:memcached:1.4.13:::::::*

Rows per page:

1-10 of 131

References

secunia.com/advisories/56183

www.openwall.com/lists/oss-security/2013/01/14/4

www.openwall.com/lists/oss-security/2013/01/14/6

www.securityfocus.com/bid/64978

www.ubuntu.com/usn/USN-2080-1

bugzilla.redhat.com/show_bug.cgi?id=895054

code.google.com/p/memcached/issues/attachmentText?id=306&aid=3060004000&name=0001-Fix-buffer-overrun-when-logging-key-to-delete-in-bin.patch&token=3GEzHThBL5cxmUrsYANkW03RrNY%3A1358179503096

code.google.com/p/memcached/issues/detail?id=306

code.google.com/p/memcached/wiki/ReleaseNotes1417