Intrusion Prevention

Memcached.Process.Bin.Append.Prepend.Integer.Overflow

Description

This indicates an attack attempt against an Integer Overflow vulnerability in Memcached.
The vulnerability is caused by an error when the vulnerable software handles multiple commands that prepend or append data. A remote unauthenticated attacker may be able to exploit this to execute arbitrary code in the context of the user.

Affected Products

Memcached Project Memcached prior to 1.4.33

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.
https://github.com/memcached/memcached/wiki/ReleaseNotes1433

CVE References

CVE-2016-8704