Memcached Stats Disclosure Vulnerability Scanner
Misconfigured Memcache applications can cause many private data to be leaked by attackers.
Short Info
Level
Low
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
7 second
Time Interval
3 month
Scan only one
Domain, Ipv4
Toolbox
-
A weakness has been reported in memcached, which can be exploited by malicious people to disclose system information. The weakness is caused due to the application disclosing the content of /proc/self/maps if a stats maps command is received. This can be exploited to disclose e.g. the addresses of allocated memory regions.
Attackers can use your misconfigured Memcache application by impersonating you and access your private data.