CVE

Id
38929  
CVE No.
CVE-2009-1494  
Status
Candidate  
Description
The process_stat function in Memcached 1.2.8 discloses memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain potentially sensitive information by sending this command to the daemon"s TCP port.  
Phase
Assigned (20090430)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
427481 38929 CVE-2009-1494 MISC:http://code.google.com/p/memcachedb/source/browse/trunk/ChangeLog?spec=svn98&r=98  View
427482 38929 CVE-2009-1494 MISC:http://code.google.com/p/memcachedb/source/detail?r=98  View
427483 38929 CVE-2009-1494 MISC:http://code.google.com/p/memcachedb/source/diff?spec=svn98&r=98&format=side&path=/trunk/memcachedb.c  View
427484 38929 CVE-2009-1494 MISC:http://groups.google.com/group/memcached/browse_thread/thread/ff96a9b88fb5d40e  View
427485 38929 CVE-2009-1494 MISC:http://memcached.googlecode.com/files/memcached-1.2.8.tar.gz  View
427486 38929 CVE-2009-1494 XF:memcached-processstat-info-disclosure(50444)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
43615 JVNDB-2009-004622 Game Maker 2k iDB の inc/profilemain.php におけるディレクトリトラバーサルの脆弱性 Game Maker 2k Internet Discussion Boards (iDB) の inc/profilemain.php には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2009-1498 38929 6.8 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-004622.html  View