CVE-2013-7291

Sažetak

memcached before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (crash) via a request that triggers an "unbounded key print" during logging, related to an issue that was "quickly grepped out of the source tree," a different vulnerability than CVE-2013-0179 and CVE-2013-7290.

Reference

http://www.securityfocus.com/bid/64989
https://code.google.com/p/memcached/issues/detail?id=306
https://code.google.com/p/memcached/wiki/ReleaseNotes1417

CVSS

Base:	1.8
Impact:	2.9
Exploitability:	3.2

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:A/AC:H/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

25-03-2018 - 01:29

Objavljeno

13-01-2014 - 21:55