Redis CVE-2015-4335 EVAL Lua Sandbox Security Bypass Vulnerability

Bugtraq ID: 75034
Class: Design Error
CVE: CVE-2015-4335
Remote: Yes
Local: No
Published: Jun 04 2015 12:00AM
Updated: Mar 07 2017 02:06AM
Credit: Ben Murphy
Vulnerable: Redis Redis 0
IBM PowerKVM 3.1
IBM PowerKVM 2.1
Gentoo Linux
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable: Redis Redis 3.0.2
Redis Redis 2.8.21


 

Privacy Statement
Copyright 2010, SecurityFocus