This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote host contains a memory-based object store that is
potentially affected by multiple vulnerabilities.
According to its self-reported version, the version of memcached
installed on the remote host is a version prior to 1.4.17. It is,
therefore, reportedly affected by the following vulnerabilities :
- An error exists related to handling SASL requests
that could allow authentication bypasses.
- An error exists in the function 'do_item_get' in the
file 'items.c' that could cause buffer overreads and
allow denial of service attacks. (CVE-2013-7290)
- An error related to logging and verbose mode could
allow some requests to cause denial of service
See also :
Upgrade to memcached 1.4.17 or later.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.5
Public Exploit Available : false
Nessus Plugin ID: 72212 ()
Bugtraq ID: 645596498864989
CVE ID: CVE-2013-7239CVE-2013-7290CVE-2013-7291
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.