CVE-2013-2132

2013-08-15T17:55:00
ID CVE-2013-2132
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T16:27:00

Description

bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to decoding of an "invalid DBRef." Per: http://cwe.mitre.org/data/definitions/476.html

'CWE-476: NULL Pointer Dereference'