[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247974

 
 

909

 
 

194654

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2010-1152Date: (C)2010-04-12   (M)2023-12-22


memcached.c in memcached before 1.4.3 allows remote attackers to cause a denial of service (daemon hang or crash) via a long line that triggers excessive memory allocation. NOTE: some of these details are obtained from third party information.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECTRACK-1023839
SECUNIA-39306
ADV-2011-0442
SUSE-SR:2010:012
SUSE-SR:2010:013
http://marc.info/?l=oss-security&m=127074597129559&w=2
http://marc.info/?l=oss-security&m=127075341110616&w=2
http://blogs.sun.com/security/entry/input_validation_vulnerability_in_memcached
http://code.google.com/p/memcached/issues/detail?id=102
http://github.com/memcached/memcached/commit/75cc83685e103bc8ba380a57468c8f04413033f9
http://github.com/memcached/memcached/commit/d9cd01ede97f4145af9781d448c62a3318952719

CWE    1
CWE-20

© SecPod Technologies