CVE-2010-1152

memcached < 1.4.3 - Denial of Service via Long Line Input

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-1152. PoCs published by fallenpegasus.

AI-analyzed exploit summary This exploit leverages a denial-of-service vulnerability in memcached by sending a continuous stream of null bytes to the target server, causing excessive memory allocation and potentially crashing the service. It targets versions prior to 1.4.3.

Description

memcached.c in memcached before 1.4.3 allows remote attackers to cause a denial of service (daemon hang or crash) via a long line that triggers excessive memory allocation. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED
by fallenpegasus · textdoslinux
https://www.exploit-db.com/exploits/33850

This exploit leverages a denial-of-service vulnerability in memcached by sending a continuous stream of null bytes to the target server, causing excessive memory allocation and potentially crashing the service. It targets versions prior to 1.4.3.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: memcached < 1.4.3
No auth needed
Prerequisites: network access to the target memcached server
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (12)

Core 12
Core References
Patch mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127075341110616&w=2
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/39306
Patch mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127074597129559&w=2
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0442
Patch mailing-list x_refsource_mlist
http://marc.info/?l=oss-security&m=127075808518733&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1023839

Scores

EPSS 0.1044
EPSS Percentile 95.2%

Details

CWE
CWE-20
Status published
Products (20)
memcachedb/memcached 0.0.1
memcachedb/memcached 0.0.2
memcachedb/memcached 0.0.3
memcachedb/memcached 0.0.4
memcachedb/memcached 0.1.0
memcachedb/memcached 0.1.1
memcachedb/memcached 1.0.0 beta
memcachedb/memcached 1.0.1 beta
memcachedb/memcached 1.0.2 beta
memcachedb/memcached 1.0.3
... and 10 more
Published Apr 12, 2010
Tracked Since Feb 18, 2026