MemcacheDB Information Disclosure Vulnerability Network Vulnerability

Summary

The host is running MemcacheDB and is prone to Information Disclosure Vulnerabilities.

Impact

Successful exploitation will let the attacker craft execute malicious commands and pass it to the vulnerable functions to gain sensitive information about the application.

Solution

Upgrade to memcached 1.2.8 or later, For updates refer to http://memcached.googlecode.com/files/memcached-1.2.8.tar.gz

Insight

Error in process_stat function discloses the contents of /proc/self/maps in response to a stats maps command.

Affected

MemcacheDB version 1.2.0 and prior

References

http://secunia.com/advisories/34932
http://www.vupen.com/english/advisories/2009/1197

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-1255

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache Tomcat servlet/JSP container default files
Adobe Digital Edition Information Disclosure Vulnerability (Windows)
Adobe Reader Information Disclosure Vulnerability Jun05 (Mac OS X)
Adobe Reader 'SWF' Information Disclosure Vulnerability (Windows)
Apple Safari Webkit Multiple Vulnerabilities - May13 (Mac OS X)

Take action and discover your vulnerabilities