CVE-2010-1152

memcached < 1.4.3 - Denial of Service via Long Line Input

Title source: llm
STIX 2.1

Description

memcached.c in memcached before 1.4.3 allows remote attackers to cause a denial of service (daemon hang or crash) via a long line that triggers excessive memory allocation. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED
by fallenpegasus · textdoslinux
https://www.exploit-db.com/exploits/33850

References (12)

Core 12
Core References
Patch mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127075341110616&w=2
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/39306
Patch mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127074597129559&w=2
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0442
Patch mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127075808518733&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1023839

Scores

EPSS 0.2272
EPSS Percentile 95.9%

Details

CWE
CWE-20
Status published
Products (20)
memcachedb/memcached 0.0.1
memcachedb/memcached 0.0.2
memcachedb/memcached 0.0.3
memcachedb/memcached 0.0.4
memcachedb/memcached 0.1.0
memcachedb/memcached 0.1.1
memcachedb/memcached 1.0.0 beta
memcachedb/memcached 1.0.1 beta
memcachedb/memcached 1.0.2 beta
memcachedb/memcached 1.0.3
... and 10 more
Published Apr 12, 2010
Tracked Since Feb 18, 2026