Lucene search
Redhat.comRH:CVE-2016-8704HistoryJan 11, 2017 - 7:17 p.m.
CVE-2016-8704
2017-01-1119:17:37
redhat.com
access.redhat.com
12
0.867 High
EPSS
Percentile
98.6%
An integer overflow flaw, leading to a heap-based buffer overflow, was found in the memcached binary protocol. An attacker could create a specially crafted message that would cause the memcached server to crash or, potentially, execute arbitrary code.
Mitigation
This flaw is in the memcached binary protocol. If you client programs only use the ASCII protocol when communicating with memcached, you can disable the binary protocol and protect against this flaw by adding "-B ascii" to OPTIONS in /etc/sysconfig/memcached.
Related
prion
prion
Integer overflow
2017-01-06 21:59:00
cve
cve
CVE-2016-8704
2017-01-06 21:59:01
alpinelinux
alpinelinux
CVE-2016-8704
2017-01-06 21:59:01
osv
osv
CVE-2016-8704
2017-01-06 21:59:01
memcached - security update
2016-11-03 00:00:00
memcached - security update
2016-11-05 00:00:00
talos
talos
Memcached Server Append/Prepend Remote Code Execution Vulnerability
2016-10-31 00:00:00
veracode
veracode
Denial Of Service
2019-01-15 09:14:52
nvd
nvd
CVE-2016-8704
2017-01-06 21:59:01
ubuntucve
ubuntucve
CVE-2016-8704
2016-11-02 00:00:00
checkpoint_advisories
checkpoint_advisories
Memcached process_bin_append_prepend Integer Overflow (CVE-2016-8704)
2016-12-07 00:00:00
debiancve
debiancve
CVE-2016-8704
2017-01-06 21:59:01
cvelist
cvelist
CVE-2016-8704
2017-01-06 21:00:00
openvas
openvas
CentOS Update for memcached CESA-2016:2820 centos6
2016-11-29 00:00:00
RedHat Update for memcached RHSA-2016:2820-01
2016-11-24 00:00:00
Memcached < 1.4.33 Multiple RCE Vulnerabilities
2016-11-02 00:00:00
ibm
ibm
nessus
nessus
Oracle Linux 6 : memcached (ELSA-2016-2820)
2016-11-23 00:00:00
CentOS 6 : memcached (CESA-2016:2820)
2016-11-29 00:00:00
Scientific Linux Security Update : memcached on SL6.x i386/x86_64 (20161123)
2016-11-23 00:00:00
centos
centos
memcached security update
2016-11-28 22:32:14
memcached security update
2016-11-25 16:47:41
talosblog
talosblog
Memcached - A Story of Failed Patching & Vulnerable Servers
2017-07-17 07:35:00
redhat
redhat
(RHSA-2017:0059) Moderate: Red Hat Mobile Application Platform 4.2.1 Security Update - SDKs and RPMs
2017-01-11 16:26:55
(RHSA-2016:2820) Important: memcached security update
2016-11-23 04:44:15
(RHSA-2016:2819) Important: memcached security update
2016-11-23 04:43:57
thn
thn
Multiple Critical Remotely Exploitable Flaws Discovered in Memcached Caching System
2016-11-01 23:21:00
Over 70,000 Memcached Servers Still Vulnerable to Remote Hacking
2017-07-18 04:52:00
oraclelinux
oraclelinux
memcached security update
2016-11-23 00:00:00
memcached security update
2016-11-23 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: memcached-1.4.33-1.fc25
2016-12-08 03:53:46
[SECURITY] Fedora 23 Update: memcached-1.4.17-5.fc23
2016-11-14 23:52:16
[SECURITY] Fedora 24 Update: memcached-1.4.25-2.fc24
2016-11-14 21:02:25
ubuntu
ubuntu
Memcached vulnerabilities
2016-11-02 00:00:00
gentoo
gentoo
memcached: Multiple vulnerabilities
2017-01-02 00:00:00
amazon
amazon
Important: memcached
2016-11-10 18:00:00
mageia
mageia
Updated memcached packages fix security vulnerability
2016-11-17 19:37:05
debian
debian
[SECURITY] [DSA 3704-1] memcached security update
2016-11-03 16:24:14
[SECURITY] [DSA 3704-1] memcached security update
2016-11-03 16:24:14
[SECURITY] [DLA 701-1] memcached security update
2016-11-05 14:57:27
archlinux
archlinux
[ASA-201611-1] memcached: arbitrary code execution
2016-11-01 00:00:00
freebsd
freebsd
memcached -- multiple vulnerabilities
2016-10-31 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package memcached version 1.4.33-alt1
2016-11-02 00:00:00
packetstorm
packetstorm
Memcached 1.4.33 Proof Of Concept
2016-11-03 00:00:00
suse
suse
Security update for memcached (important)
2018-03-26 15:09:40
Security update for memcached (important)
2018-03-22 17:27:53