Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Memcached < 1.4.3 No Newline Memory Consumption DoS

Medium

Synopsis

The remote host is vulnerable to a denial of service attack.

Description

The remote host is running memcached, a distributed memory object caching system. The installed version of memcached is earlier than 1.4.3. Such versions are potentially affected by a denial of service vulnerability because the application continues to read in new data, reallocating its input buffer until a newline character is received which could lead to excessive memory consumption. An attacker, exploiting this flaw, could crash the affected service.

Solution

Upgrade to memcached 1.4.3 or later.