MemcacheDB Information Disclosure Vulnerability Network Vulnerability

Summary

The host is running MemcacheDB and is prone to Information Disclosure Vulnerabilities.

Impact

Successful exploitation will let the attacker craft execute malicious commands and pass it to the vulnerable functions to gain sensitive information about the application.

Solution

Upgrade to memcached 1.2.8 or later, For updates refer to http://memcached.googlecode.com/files/memcached-1.2.8.tar.gz

Insight

Error in process_stat function discloses the contents of /proc/self/maps in response to a stats maps command.

Affected

MemcacheDB version 1.2.0 and prior

References

http://secunia.com/advisories/34932
http://www.vupen.com/english/advisories/2009/1197

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-1255

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Adobe Reader Multiple Vulnerabilities - Aug07 (Windows)
Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability (Win)
CA Gateway Security Remote Code Execution Vulnerability
Adobe Reader Multiple Vulnerabilities - Aug07 (Mac OS X)
Apple Safari Multiple Vulnerabilities Dec13 (Mac OS X)

Take action and discover your vulnerabilities