bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) prior to 2.5.2, as used in MongoDB, allows context-dependent malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to decoding of an "invalid DBRef."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mongodb mongodb 1.8.0 |
||
mongodb mongodb 2.0.0 |
||
mongodb mongodb 2.4.2 |
||
mongodb mongodb |
||
mongodb mongodb 1.2.0 |
||
mongodb mongodb 2.4.5 |
||
mongodb mongodb 2.2.0 |
||
mongodb mongodb 1.4.0 |
||
mongodb mongodb 2.4.0 |
||
mongodb mongodb 2.4.3 |
||
mongodb mongodb 1.6.0 |
||
mongodb mongodb 2.5.0 |
||
mongodb mongodb 2.4.4 |
||
mongodb mongodb 2.4.1 |
||
canonical ubuntu linux 13.04 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 12.04 |
||
opensuse opensuse 12.3 |