Lucene search
K

3436 matches found

seebug.org
seebug.org
added 2013/06/03 12:0 a.m.55 views

MongoDB 空指针引用拒绝服务漏洞(CVE-2013-2132)

Bugtraq ID:60252 CVE ID:CVE-2013-2132 MongoDB是一个基于分布式文件存储的数据库。由C++语言编写 在解析非法DBref记录时MongoDB存在一个安全漏洞,允许远程攻击者利用漏洞触发一个空指针引用错误,可使应用程序崩溃 0 MongoDB 厂商解决方案 用户可参考如下厂商提供的安全公告获得补丁信息: https://github.com/mongodb/mongo-python-driver/commit/a060c15ef87e0f0e72974c7c0e57fe811bbd06a2...

4.3CVSS8.1AI score0.02633EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2013/06/03 12:0 a.m.38 views

CVE-2013-2132

bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...

4.3CVSS7.1AI score0.02633EPSS
Exploits2References2
Check Point Advisories
Check Point Advisories
added 2013/05/28 12:0 a.m.12 views

MongoDB nativeHelper.apply Remote Code Execution (CVE-2013-1892)

A remote code execution vulnerability has been reported in MongoDB...

6CVSS8.4AI score0.44543EPSS
Exploits7
Kitploit
Kitploit
added 2013/04/17 11:35 p.m.33 views

[Cuckoo Sandbox v0.6] Software for Automating Analysis of Suspicious Files

Cuckoo Sandbox is an Open Source software for automating analysis of suspicious files. To do so it makes use of custom components that monitor the behavior of the malicious processes while running in an isolated environment. Cuckoo generates a handful of different raw data which include: Native...

7.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/04/10 12:0 a.m.19 views

MongoDB Web Interface Detection

The remote web server is running the MongoDB Web Admin Interface. This interface lists information of interest to administrators of MongoDB, a document-oriented database system. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid65915; scriptversion"1.6";...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/04/10 12:0 a.m.219 views

MongoDB Detection

A document-oriented database system is listening on the remote port. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid65914; scriptversion"1.16"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/09/24"; scriptnameenglish:"MongoDB Detection";...

7.1AI score
Exploits0References1
seebug.org
seebug.org
added 2013/04/09 12:0 a.m.38 views

MongoDB nativeHelper.apply Remote Code Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score0.44543EPSS
Exploits7
exploitpack
exploitpack
added 2013/04/08 12:0 a.m.69 views

MongoDB 2.2.3 - nativeHelper.apply Remote Code Execution

MongoDB 2.2.3 - nativeHelper.apply Remote Code Execution Title: MongoDB nativeHelper.apply Remote Code Execution Author: agixid http://blog.scrt.ch/2013/03/24/mongodb-0-day-ssji-to-rce/ Software Link: http://fastdl.mongodb.org/linux/mongodb-linux-i686-2.2.3.tgz Version: 2.2.3 The following PoC...

Exploits0
OpenVAS
OpenVAS
added 2013/04/08 12:0 a.m.41 views

Fedora Update for mongodb FEDORA-2013-4531

Check for the Version of mongodb OpenVAS Vulnerability Test Fedora Update for mongodb FEDORA-2013-4531 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

6CVSS8.1AI score0.44543EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2013/04/08 12:0 a.m.64 views

Fedora Update for mongodb FEDORA-2013-4539

Check for the Version of mongodb OpenVAS Vulnerability Test Fedora Update for mongodb FEDORA-2013-4539 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

6CVSS8.1AI score0.44543EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2013/04/08 12:0 a.m.48 views

Fedora 18 : mongodb-2.2.3-4.fc18 (2013-4539)

Fix for CVE-2013-1892 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

6CVSS7.6AI score0.44543EPSS
Exploits7References3
Exploit DB
Exploit DB
added 2013/04/08 12:0 a.m.1244 views

MongoDB - nativeHelper.apply Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'MongoDB nativeHelper.apply Remote Cod...

6CVSS7AI score0.44543EPSS
Exploits7
Exploit DB
Exploit DB
added 2013/04/08 12:0 a.m.3724 views

MongoDB 2.2.3 - nativeHelper.apply Remote Code Execution

Title: MongoDB nativeHelper.apply Remote Code Execution Author: agixid http://blog.scrt.ch/2013/03/24/mongodb-0-day-ssji-to-rce/ Software Link: http://fastdl.mongodb.org/linux/mongodb-linux-i686-2.2.3.tgz Version: 2.2.3 The following PoC exploits the "nativeHelper" feature in the spidermonkey...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2013/04/08 12:0 a.m.40 views

Fedora Update for mongodb FEDORA-2013-4539

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scripttagname:"affected",...

6CVSS8.1AI score0.44543EPSS
Exploits7References2
OpenVAS
OpenVAS
added 2013/04/08 12:0 a.m.28 views

Fedora Update for mongodb FEDORA-2013-4531

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6CVSS8.1AI score0.44543EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2013/04/08 12:0 a.m.40 views

Fedora 17 : mongodb-2.2.3-4.fc17 (2013-4531)

Fix for CVE-2013-1892 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...

6CVSS7.6AI score0.44543EPSS
Exploits7References3
Fedora
Fedora
added 2013/04/07 12:43 a.m.33 views

[SECURITY] Fedora 17 Update: mongodb-2.2.3-4.fc17

Mongo from "humongous" is a high-performance, open source, schema-free document-oriented database. MongoDB is written in C++ and offers the follow ing features: Collection oriented storage: easy storage of object/JSON-style data Dynamic queries Full index support, including on inner objects and...

6CVSS0.3AI score0.44543EPSS
Exploits7
Fedora
Fedora
added 2013/04/07 12:32 a.m.44 views

[SECURITY] Fedora 18 Update: mongodb-2.2.3-4.fc18

Mongo from "humongous" is a high-performance, open source, schema-free document-oriented database. MongoDB is written in C++ and offers the follow ing features: Collection oriented storage: easy storage of object/JSON-style data Dynamic queries Full index support, including on inner objects and...

6CVSS0.3AI score0.44543EPSS
Exploits7
Packet Storm
Packet Storm
added 2013/04/02 12:0 a.m.80 views

MongoDB nativeHelper.apply Remote Code Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'MongoDB nativeHelper.apply Remote Cod...

6CVSS8.1AI score0.44543EPSS
Exploits7
0day.today
0day.today
added 2013/04/02 12:0 a.m.1537 views

MongoDB nativeHelper.apply Remote Code Execution Vulnerability

This Metasploit module exploits the nativeHelper feature from spiderMonkey which allows control over execution by calling it with specially crafted arguments. This Metasploit module has been tested successfully on MongoDB 2.2.3 on Ubuntu 10.04 and Debian Squeeze. This file is part of the Metasplo...

6CVSS0.3AI score0.44543EPSS
Exploits7
Rows per page
Query Builder