Vulnerabilities > Memcached > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-01-13 | CVE-2013-0179 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Memcached The process_bin_delete function in memcached.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator in the key and triggers a buffer over-read when printing to stderr. | 1.8 |
2014-01-13 | CVE-2013-7290 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Memcached The do_item_get function in items.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a request to delete a key, which does not account for the lack of a null terminator in the key and triggers a buffer over-read when printing to stderr, a different vulnerability than CVE-2013-0179. | 1.8 |
2014-01-13 | CVE-2013-7291 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Memcached memcached before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (crash) via a request that triggers an "unbounded key print" during logging, related to an issue that was "quickly grepped out of the source tree," a different vulnerability than CVE-2013-0179 and CVE-2013-7290. | 1.8 |