CVE-2011-4971 : Multiple integer signedness errors in the (1) process_bin_sasl

Multiple integer signedness errors in the (1) process_bin_sasl_auth, (2) process_bin_complete_sasl_auth, (3) process_bin_update, and (4) process_bin_append_prepend functions in Memcached 1.4.5 and earlier allow remote attackers to cause a denial of service (crash) via a large body length value in a packet.

Published 2013-12-12 18:55:04

Updated 2018-03-25 01:29:00

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2011-4971

Memcached » Memcached
Versions up to, including, (<=) 1.4.5
cpe:2.3:a:memcached:memcached:*:*:*:*:*:*:*:*
Matching versions
Memcached » Memcached » Version: 1.4.0
cpe:2.3:a:memcached:memcached:1.4.0:*:*:*:*:*:*:*
Matching versions
Memcached » Memcached » Version: 1.2.7
cpe:2.3:a:memcached:memcached:1.2.7:*:*:*:*:*:*:*
Matching versions
Memcached » Memcached » Version: 1.2.8
cpe:2.3:a:memcached:memcached:1.2.8:*:*:*:*:*:*:*
Matching versions
Memcached » Memcached » Version: 1.4.4
cpe:2.3:a:memcached:memcached:1.4.4:*:*:*:*:*:*:*
Matching versions
Memcached » Memcached » Version: 1.4.3
cpe:2.3:a:memcached:memcached:1.4.3:*:*:*:*:*:*:*
Matching versions
Memcached » Memcached » Version: 1.4.2
cpe:2.3:a:memcached:memcached:1.4.2:*:*:*:*:*:*:*
Matching versions
Memcached » Memcached » Version: 1.4.1
cpe:2.3:a:memcached:memcached:1.4.1:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2011-4971

Top countries where our scanners detected CVE-2011-4971

Top open port discovered on systems with this issue 11211

IPs affected by CVE-2011-4971 1,743

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2011-4971!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2011-4971

EPSS FAQ

56.13%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 98 %

Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2011-4971

Memcached Remote Denial of Service

First seen: 2020-04-26

auxiliary/dos/misc/memcached

This module sends a specially-crafted packet to cause a segmentation fault in memcached v1.4.15 or earlier versions. Authors: - Gregory Man <man.gregory@gmail.com>

More information

CVSS scores for CVE-2011-4971

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

CWE ids for CVE-2011-4971

CWE-189

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-4971

http://www.debian.org/security/2014/dsa-2832

Debian -- Security Information -- DSA-2832-1 memcached

CVEs referencing this url
http://www.ubuntu.com/usn/USN-2080-1

USN-2080-1: Memcached vulnerabilities | Ubuntu security notices

CVEs referencing this url
http://www.securityfocus.com/bid/59567

memcached Remote Denial of Service Vulnerability
http://insecurety.net/?p=872

Memcached Remote Denial of Service PoC – InSecurity.Net
Exploit
http://www.mandriva.com/security/advisories?name=MDVSA-2013:280

mandriva.com
https://puppet.com/security/cve/cve-2011-4971

CVE-2011-4971 Memcached vulnerability | Puppet
https://code.google.com/p/memcached/issues/detail?id=192

Google Code Archive - Long-term storage for Google Code Project Hosting.
Exploit;Patch

Jump to

Vulnerability Details : CVE-2011-4971