CVE-2016-9054
published 2017-01-26CVE-2016-9054: An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet…
PriorityP264critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
7.70%
93.9th percentile
An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function as_sindex__simatch_list_by_set_binid resulting in remote code execution. An attacker can simply connect to the port to trigger this vulnerability.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| aerospike | database_server | — | — |
Detection & IOCsextracted from sources · hover to see the quote
snort↗
41206
snort↗
41212
snort↗
41216
- →The vulnerability is triggered by a specially crafted packet sent to the Aerospike Database Server's listening port; monitor for unexpected or malformed query packets targeting the Aerospike service port. ↗
- ·Snort rules 41206, 41212, 41216 cover multiple CVEs in the same advisory (CVE-2016-9050, CVE-2016-9052, CVE-2016-9054); rule-to-CVE mapping is not individually specified and rules may be updated. ↗
- ·Vulnerability was confirmed only against Aerospike Database Server version 3.10.0.3; exploitation behavior on other versions is not documented in the sources. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Aerospike Database Server 3.10.0.3 Query memory corruption (BID-95421 / ID 103204)
vuldb·2026-05-14·CVSS 9.8
CVE-2016-9054 [CRITICAL] Aerospike Database Server 3.10.0.3 Query memory corruption (BID-95421 / ID 103204)
A vulnerability categorized as critical has been discovered in Aerospike Database Server 3.10.0.3. This issue affects some unknown processing of the component Query Handler. Executing a manipulation can lead to memory corruption.
The identification of this vulnerability is CVE-2016-9054. The attack may be launched remotely. There is no exploit available.
GHSA
GHSA-hc6g-g45p-5gpr: An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3
ghsa_unreviewed·2022-05-13
CVE-2016-9054 [CRITICAL] CWE-119 GHSA-hc6g-g45p-5gpr: An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3
An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function as_sindex__simatch_list_by_set_binid resulting in remote code execution. An attacker can simply connect to the port to trigger this vulnerability.
No detection rules found.
No public exploits indexed.
Talos
Vulnerability Spotlight: Exploiting the Aerospike Database Server
blogs_talos·2017-01-12·CVSS 8.2
[HIGH] Vulnerability Spotlight: Exploiting the Aerospike Database Server
## Vulnerability Spotlight: Exploiting the Aerospike Database Server
Vulnerabilities discovered by Talos
Talos is disclosing multiple vulnerabilities discovered in the Aerospike Database Server. These vulnerabilities range from memory disclosure to potential remote code execution. This software is used by various companies that require a high performance NoSQL database. Aerospike fixed these issues in version 3.11 .
The Aerospike Database Server is both a distributed and scalable NoSQL database that is used as a back-end for scalable web applications that need a key-value store. With a focus on performance, it is multi-threaded and retains its indexes entirely in ram with the ability to persist data to a solid-state drive or traditional rotational media.
TALOS-2016-0264 (CVE-2016-9050)
Talos
Vulnerability Spotlight: Exploiting the Aerospike Database Server
blogs_talos·2017-01-12·CVSS 8.2
[HIGH] Vulnerability Spotlight: Exploiting the Aerospike Database Server
Vulnerabilities discovered by Talos
Talos is disclosing multiple vulnerabilities discovered in the Aerospike Database Server. These vulnerabilities range from memory disclosure to potential remote code execution. This software is used by various companies that require a high performance NoSQL database. Aerospike fixed these issues in version 3.11.
The Aerospike Database Server is both a distributed and scalable NoSQL database that is used as a back-end for scalable web applications that need a key-value store. With a focus on performance, it is multi-threaded and retains its indexes entirely in ram with the ability to persist data to a solid-state drive or traditional rotational media.
TALOS-2016-0264 (CVE-2016-9050) - Aerospike Database Server Client Message Memory Disclosure Vulnerabi
2017-01-26
Published