2 matches found
CVE-2016-9051
An exploitable out-of-bounds write vulnerability exists in the batch transaction field parsing functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause an out-of-bounds write resulting in memory corruption which can lead to remote code execution. An attacker can...
CVE-2016-9051
CVE-2016-9051 describes an exploitable out-of-bounds write in Aerospike Database Server 3.10.0.3 during batch transaction field parsing. The bug arises in as_batch_queue_task/as_msg_field handling: a missing bounds check when reading fields (field_sz) and subsequent field traversal can advance be...