mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote malicious users to cause a denial of service (memory consumption and process termination) by leveraging in-memory database representation when authenticating against a non-existent database.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mongodb mongodb 2.6.0 |
||
mongodb mongodb 2.4.0 |