CVE-2013-7291
NONE EPSS 56.2%
Published Jan 13, 201412y ago · Modified Jun 17, 20262w ago
Published Jan 13, 2014 12y ago
Last Modified Jun 17, 2026 2w ago
Description
memcached before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (crash) via a request that triggers an "unbounded key print" during logging, related to an issue that was "quickly grepped out of the source tree," a different vulnerability than CVE-2013-0179 and CVE-2013-7290.
Threat Intelligence
EPSS Exploit Probability
56.2% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available
Weaknesses 1
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety
Affected Products 17
| Vendor | Product | Version | Range |
|---|---|---|---|
| memcached | memcached | * | ≤1.4.16 |
| memcached | memcached | 1.4.0 | any |
| memcached | memcached | 1.4.1 | any |
| memcached | memcached | 1.4.2 | any |
| memcached | memcached | 1.4.3 | any |
| memcached | memcached | 1.4.4 | any |
| memcached | memcached | 1.4.5 | any |
| memcached | memcached | 1.4.6 | any |
| memcached | memcached | 1.4.7 | any |
| memcached | memcached | 1.4.8 | any |
| memcached | memcached | 1.4.9 | any |
| memcached | memcached | 1.4.10 | any |
| memcached | memcached | 1.4.11 | any |
| memcached | memcached | 1.4.12 | any |
| memcached | memcached | 1.4.13 | any |
| memcached | memcached | 1.4.14 | any |
| memcached | memcached | 1.4.15 | any |
References 3
- securityfocus.com http://www.securityfocus.com/bid/64989
- code.google.com https://code.google.com/p/memcached/issues/detail?id=306
- code.google.com https://code.google.com/p/memcached/wiki/ReleaseNotes1417
Remediation
- code.google.com https://code.google.com/p/memcached/issues/detail?id=306
- code.google.com https://code.google.com/p/memcached/wiki/ReleaseNotes1417