12 matches found
Debian DSA-1853-1 : memcached - heap-based buffer overflow
Ronald Volgers discovered that memcached, a high-performance memory object caching system, is vulnerable to several heap-based buffer overflows due to integer conversions when parsing certain length attributes. An attacker can use this to execute arbitrary code on the system running memcached on...
Fedora Core 11 FEDORA-2009-12552 (memcached)
The remote host is missing an update to memcached announced via advisory FEDORA-2009-12552. OpenVAS Vulnerability Test $Id: fcore200912552.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-12552 memcached Authors: Thomas Reinke Copyright: Copyright c...
Fedora Core 11 FEDORA-2009-12552 (memcached)
The remote host is missing an update to memcached announced via advisory FEDORA-2009-12552. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora 11 : memcached-1.2.8-2.fc11 (2009-12552)
Addresses CVE-2009-2415 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
openSUSE 10 Security Update : memcached (memcached-6397)
This update of memcached fixes a signedness problem which may lead to a buffer too small to hold all data received from the network, this may allow arbitrary remote code execution. CVE-2009-2415 Additionally an information leak was fixed CVE-2009-1494, CVE-2009-1255 %NASLMINLEVEL 70300 C Tenable...
Mandrake Security Advisory MDVSA-2009:202 (memcached)
The remote host is missing an update to memcached announced via advisory MDVSA-2009:202. OpenVAS Vulnerability Test $Id: mdksa2009202.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:202 memcached Authors: Thomas Reinke Copyright: Copyright c 2009...
Mandrake Security Advisory MDVSA-2009:202 (memcached)
The remote host is missing an update to memcached announced via advisory MDVSA-2009:202. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
openSUSE Security Update : memcached (memcached-1165)
This update of memcached fixes a signedness problem which may lead to a buffer too small to hold all data received from the network, this may allow arbitrary remote code execution. CVE-2009-2415 Additionally an information leak was fixed CVE-2009-1494, CVE-2009-1255 %NASLMINLEVEL 70300 C Tenable...
openSUSE Security Update : memcached (memcached-1165)
This update of memcached fixes a signedness problem which may lead to a buffer too small to hold all data received from the network, this may allow arbitrary remote code execution. CVE-2009-2415 Additionally an information leak was fixed CVE-2009-1494, CVE-2009-1255 %NASLMINLEVEL 70300 C Tenable...
CVE-2009-2415
CVE-2009-2415 affects memcached 1.1.12 and 1.2.2, with heap-based buffer overflows caused by integer-conversion errors when parsing length attributes. Remote code execution and authentication bypass (SASL-related state issue) are described in connected advisories. Remediation generally involves u...
Memcached多个基于堆的缓冲区溢出漏洞
Bugraq ID: 35989 CVE ID:CVE-2009-2415 Danga Interactive memcached是一款高性能的分布式内存缓存解决方案。 memcached在解析部分长度属性时存在由整数转换而造成基于堆的缓冲区溢出,远程攻击者可以利用漏洞以memcached运行进程权限执行任意代码。 目前没有更多详细信息系统。 Danga Interactive memcached 1.2.8 Danga Interactive memcached 1.2.7 Debian Linux用户可参考如下升级程序: Debian GNU/Linux 4.0 etch Debia...
[SECURITY] [DSA 1853-1] New memcached packages fix arbitrary code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA-1853-1 [email protected] http://www.debian.org/security/ Nico Golde August 7th, 2009 http://www.debian.org/security/faq -...