Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	APP:MISC:MEMCACHED-CE
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	APP
Keywords	Memcached process_bin_append_prepend Arbitrary Code Execution
Release Date	2016/12/13
Update Number	2811
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: Memcached process_bin_append_prepend Arbitrary Code Execution

This signature detects attempts to exploit a known vulnerability against memcached. Successful exploitation of the vulnerability can possibly lead to arbitrary code execution.

Extended Description

An integer overflow in the process_bin_append_prepend function in Memcached, which is responsible for processing multiple commands of Memcached binary protocol, can be abused to cause heap overflow and lead to remote code execution.

Affected Products

Memcached memcached 1.4.31

References

CVE: CVE-2016-8704
URL: https://github.com/memcached/memcached/wiki/releasenotes1433
URL: http://www.talosintelligence.com/reports/talos-2016-0220/

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: Memcached process_bin_append_prepend Arbitrary Code Execution

Extended Description

Affected Products

References