Back to search
CVE-2013-2132
Published: Aug 15, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to decoding of an "invalid DBRef."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
openSUSE-SU-2013:1064
vendor-advisory
x_refsource_SUSE
USN-1897-1
vendor-advisory
x_refsource_UBUNTU
93804
vdb-entry
x_refsource_OSVDB
https://jira.mongodb.org/browse/PYTHON-532
x_refsource_MISC
[oss-security] 20130531 Re: CVE-2013-2132 MongoDB: User-triggerable NULL pointer dereference due to utter plebbery
mailing-list
x_refsource_MLIST
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=710597
x_refsource_MISC
DSA-2705
vendor-advisory
x_refsource_DEBIAN
60252
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now