Intrusion Prevention

Memcached.Process.Bin.SASL.Auth.Integer.Underflow

Description

This indicates an attack attempt against an Integer Underflow vulnerability in memcached.
The vulnerability is caused by an error when the vulnerable software handles multiple commands and the body_len parameter of a Memcached
binary protocol packet. A remote unauthenticated attacker may be able to exploit this to execute arbitrary code in the context of the user.

Affected Products

Memcached Project Memcached prior to 1.4.33

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.
https://github.com/memcached/memcached/wiki/ReleaseNotes1433

CVE References

CVE-2016-8706