CVE-2016-9051

Summary

An exploitable out-of-bounds write vulnerability exists in the batch transaction field parsing functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause an out-of-bounds write resulting in memory corruption which can lead to remote code execution. An attacker can simply connect to the port to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
AerospikeDatabase Server3.10.0.3affected

Weaknesses

  • remote code execution

ADP Enrichment

CVE Program Container

Additional References

References