CVE-2016-9052
published 2017-01-26CVE-2016-9052: An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet…
PriorityP264critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
7.70%
93.9th percentile
An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function as_sindex__simatch_by_iname resulting in remote code execution. An attacker can simply connect to the port to trigger this vulnerability.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| aerospike | database_server | — | — |
Detection & IOCsextracted from sources · hover to see the quote
snort↗
41206
snort↗
41212
snort↗
41216
- →Exploitation requires only a network connection to the Aerospike listening port — no authentication needed. Alert on any unexpected external connections to the Aerospike service port. ↗
- ·Vulnerability is confirmed only in Aerospike Database Server version 3.10.0.3; version 3.11 patches all three related CVEs (CVE-2016-9050, CVE-2016-9052, CVE-2016-9054). ↗
- ·Snort rules 41206, 41212, 41216 may be updated; always pull the latest rule versions from FireSIGHT Management Center or Snort.org. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Aerospike Database Server 3.10.0.3 Query memory corruption (BID-95419 / ID 103204)
vuldb·2026-05-14·CVSS 9.8
CVE-2016-9052 [CRITICAL] Aerospike Database Server 3.10.0.3 Query memory corruption (BID-95419 / ID 103204)
A vulnerability was found in Aerospike Database Server 3.10.0.3. It has been rated as critical. This vulnerability affects unknown code of the component Query Handler. Performing a manipulation results in memory corruption.
This vulnerability was named CVE-2016-9052. The attack may be initiated remotely. There is no available exploit.
GHSA
GHSA-cgxq-gwx2-2m4f: An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3
ghsa_unreviewed·2022-05-13
CVE-2016-9052 [CRITICAL] CWE-119 GHSA-cgxq-gwx2-2m4f: An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3
An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function as_sindex__simatch_by_iname resulting in remote code execution. An attacker can simply connect to the port to trigger this vulnerability.
No detection rules found.
No public exploits indexed.
Talos
Vulnerability Spotlight: Exploiting the Aerospike Database Server
blogs_talos·2017-01-12·CVSS 8.2
[HIGH] Vulnerability Spotlight: Exploiting the Aerospike Database Server
## Vulnerability Spotlight: Exploiting the Aerospike Database Server
Vulnerabilities discovered by Talos
Talos is disclosing multiple vulnerabilities discovered in the Aerospike Database Server. These vulnerabilities range from memory disclosure to potential remote code execution. This software is used by various companies that require a high performance NoSQL database. Aerospike fixed these issues in version 3.11 .
The Aerospike Database Server is both a distributed and scalable NoSQL database that is used as a back-end for scalable web applications that need a key-value store. With a focus on performance, it is multi-threaded and retains its indexes entirely in ram with the ability to persist data to a solid-state drive or traditional rotational media.
TALOS-2016-0264 (CVE-2016-9050)
Talos
Vulnerability Spotlight: Exploiting the Aerospike Database Server
blogs_talos·2017-01-12·CVSS 8.2
[HIGH] Vulnerability Spotlight: Exploiting the Aerospike Database Server
Vulnerabilities discovered by Talos
Talos is disclosing multiple vulnerabilities discovered in the Aerospike Database Server. These vulnerabilities range from memory disclosure to potential remote code execution. This software is used by various companies that require a high performance NoSQL database. Aerospike fixed these issues in version 3.11.
The Aerospike Database Server is both a distributed and scalable NoSQL database that is used as a back-end for scalable web applications that need a key-value store. With a focus on performance, it is multi-threaded and retains its indexes entirely in ram with the ability to persist data to a solid-state drive or traditional rotational media.
TALOS-2016-0264 (CVE-2016-9050) - Aerospike Database Server Client Message Memory Disclosure Vulnerabi
2017-01-26
Published