FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2009-1255

This CVE name corresponds to:

Entered Topic
2009-08-17 memcached -- memcached stats maps Information Disclosure Weakness

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2009-1255
Phase Assigned(20090407)

Description

The process_stat function in (1) Memcached before 1.2.8 and (2) MemcacheDB 1.2.0 discloses (a) the contents of /proc/self/maps in response to a stats maps command and (b) memory-allocation statistics in response to a stats malloc command, which allows remote attackers to obtain sensitive information such as the locations of memory regions, and defeat ASLR protection, by sending a command to the daemon's TCP port.

References

Source Reference
BUGTRAQ 20090428 Positron Security Advisory #2009-001: Memcached and MemcacheDB ASLR Bypass Weakness
FULLDISC 20090428 Positron Security Advisory #2009-001: Memcached and MemcacheDB ASLR Bypass Weakness
MISC http://www.positronsecurity.com/advisories/2009-001.html
CONFIRM http://code.google.com/p/memcachedb/source/browse/trunk/ChangeLog?spec=svn98&r=98
CONFIRM http://code.google.com/p/memcachedb/source/detail?r=98
CONFIRM http://code.google.com/p/memcachedb/source/diff?spec=svn98&r=98&format=side&path=/trunk/memcachedb.c
CONFIRM http://groups.google.com/group/memcached/browse_thread/thread/ff96a9b88fb5d40e
FEDORA FEDORA-2009-4199
FEDORA FEDORA-2009-4542
MANDRIVA MDVSA-2009:105
BID 34756
OSVDB 54127
SECTRACK 1022140
SECUNIA 34915
SECUNIA 34932
SECUNIA 35175
VUPEN ADV-2009-1196
VUPEN ADV-2009-1197
XF memcachedb-procselfmaps-info-disclosure(50221)