CVE-2016-9050
published 2017-01-26CVE-2016-9050: An exploitable out-of-bounds read vulnerability exists in the client message-parsing functionality of Aerospike Database Server 3.10.0.3. A specially crafted…
PriorityP343high8.2CVSS 3.1
AVNACLPRNUINSUCLINAH
EPSS
2.89%
85.1th percentile
An exploitable out-of-bounds read vulnerability exists in the client message-parsing functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause an out-of-bounds read resulting in disclosure of memory within the process, the same vulnerability can also be used to trigger a denial of service. An attacker can simply connect to the port and send the packet to trigger this vulnerability.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| aerospike | database_server | — | — |
| nokogiri | nokogiri | >= 0 < 1.8.1 | 1.8.1 |
CVSS provenance
nvdv3.18.2HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
nvdv3.08.2HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:P
ghsa5.5MEDIUM
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Aerospike Database Server 3.10.0.3 out-of-bounds (BID-95415 / ID 103204)
vuldb·2026-05-14·CVSS 8.2
CVE-2016-9050 [HIGH] Aerospike Database Server 3.10.0.3 out-of-bounds (BID-95415 / ID 103204)
A vulnerability was found in Aerospike Database Server 3.10.0.3. It has been declared as critical. This affects an unknown part. Such manipulation leads to out-of-bounds read.
This vulnerability is uniquely identified as CVE-2016-9050. The attack can be launched remotely. No exploit exists.
GHSA
GHSA-hrxc-9c4p-hvxq: An exploitable out-of-bounds read vulnerability exists in the client message-parsing functionality of Aerospike Database Server 3
ghsa_unreviewed·2022-05-13
CVE-2016-9050 [HIGH] CWE-125 GHSA-hrxc-9c4p-hvxq: An exploitable out-of-bounds read vulnerability exists in the client message-parsing functionality of Aerospike Database Server 3
An exploitable out-of-bounds read vulnerability exists in the client message-parsing functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause an out-of-bounds read resulting in disclosure of memory within the process, the same vulnerability can also be used to trigger a denial of service. An attacker can simply connect to the port and send the packet to trigger this vulnerability.
GHSA
Out-of-bounds read in nokogiri
ghsa·2017-12-13·CVSS 5.5
CVE-2017-9050 [MEDIUM] CWE-125 Out-of-bounds read in nokogiri
Out-of-bounds read in nokogiri
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for CVE-2016-1839. GitHub is notifying on nokogiri as uses libxml2.
Red Hat
libxml2: Heap-based buffer over-read in function xmlDictAddString
vendor_redhat·2017-05-15·CVSS 5.5
CVE-2017-9050 [MEDIUM] CWE-125 libxml2: Heap-based buffer over-read in function xmlDictAddString
libxml2: Heap-based buffer over-read in function xmlDictAddString
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for CVE-2016-1839.
Package: libxml2 (Red Hat Enterprise Linux 5) - Will not fix
Package: libxml2 (Red Hat Enterprise Linux 6) - Will not fix
Package: libxml2 (Red Hat Enterprise Linux 7) - Will not fix
Package: libxml2 (Red Hat Enterprise Linux 8) - Not affected
Package: mingw-libxml2 (Red Hat Enterprise Linux 8) - Affected
Package: libxml2 (Red Hat JBoss Core Services) - Affected
Package: libxml2 (Red Hat JBoss Enterprise Web Server 3) - Will not fix
No detection rules found.
No public exploits indexed.
Talos
Vulnerability Spotlight: Exploiting the Aerospike Database Server
blogs_talos·2017-01-12·CVSS 8.2
[HIGH] Vulnerability Spotlight: Exploiting the Aerospike Database Server
## Vulnerability Spotlight: Exploiting the Aerospike Database Server
Vulnerabilities discovered by Talos
Talos is disclosing multiple vulnerabilities discovered in the Aerospike Database Server. These vulnerabilities range from memory disclosure to potential remote code execution. This software is used by various companies that require a high performance NoSQL database. Aerospike fixed these issues in version 3.11 .
The Aerospike Database Server is both a distributed and scalable NoSQL database that is used as a back-end for scalable web applications that need a key-value store. With a focus on performance, it is multi-threaded and retains its indexes entirely in ram with the ability to persist data to a solid-state drive or traditional rotational media.
TALOS-2016-0264 (CVE-2016-9050)
Talos
Vulnerability Spotlight: Exploiting the Aerospike Database Server
blogs_talos·2017-01-12·CVSS 8.2
[HIGH] Vulnerability Spotlight: Exploiting the Aerospike Database Server
Vulnerabilities discovered by Talos
Talos is disclosing multiple vulnerabilities discovered in the Aerospike Database Server. These vulnerabilities range from memory disclosure to potential remote code execution. This software is used by various companies that require a high performance NoSQL database. Aerospike fixed these issues in version 3.11.
The Aerospike Database Server is both a distributed and scalable NoSQL database that is used as a back-end for scalable web applications that need a key-value store. With a focus on performance, it is multi-threaded and retains its indexes entirely in ram with the ability to persist data to a solid-state drive or traditional rotational media.
TALOS-2016-0264 (CVE-2016-9050) - Aerospike Database Server Client Message Memory Disclosure Vulnerabi
Bugzilla
CVE-2017-9050 libxml2: Heap-based buffer over-read in function xmlDictAddString
bugzilla·2017-05-19·CVSS 5.5
CVE-2017-9050 [MEDIUM] CVE-2017-9050 libxml2: Heap-based buffer over-read in function xmlDictAddString
CVE-2017-9050 libxml2: Heap-based buffer over-read in function xmlDictAddString
libxml2 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2 to crash. This vulnerability exists because of an incomplete fix for CVE-2016-1839.
References:
http://seclists.org/oss-sec/2017/q2/258
Discussion:
Created libxml2 tracking bugs for this issue:
Affects: fedora-all [bug 1452550]
---
Created mingw-libxml2 tracking bugs for this issue:
Affects: fedora-all [bug 1452551]
---
Upstream patch:
https://gitlab.gnome.org/GNOME/libxml2/commit/45752d2c3
2017-01-26
Published