Automated NoSQL Database Injection Attacks: NoSQLMap

NoSQLMap is an open source Python tool designed to audit for as well as automate injection attacks and exploit default configuration weaknesses in NoSQL databases as well as web applications using NoSQL in order to disclose data from the database. It is named as a tribute to Bernardo Damele and...

Important: Red Hat Security Advisory: mongodb and pymongo security and enhancement update

Updated mongodb and pymongo packages that fix two security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...

pymongo: null pointer when decoding invalid DBRef

bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...

CVE-2013-2132

bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...

DEBIAN-CVE-2013-2132

bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...

CVE-2013-2132

bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...

PYSEC-2013-30

bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...

quokka (>=0.0.1.dev84 <=0.4.1.dev22) potentially affected by CVE-2013-2132 via pymongo (=2.4.1)

pymongo PYPI version =2.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on pymongo and may be impacted: - quokka =0.0.1.dev84, =0.4.1.dev22 Source cves: CVE-2013-2132 Source advisory: OSV:PYSEC-2013-30...

CVE-2013-2132

bson/cbsonmodule.c in the mongo-python-driver aka. pymongo before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service NULL pointer dereference and crash via vectors related to decoding of an "invalid DBRef."...

CVE-2013-2132

The CVE-2013-2132 issue affects the pymongo driver (mongo-python-driver) up to version 2.5.2, where bson/_cbsonmodule.c decoding of an invalid DBRef could trigger a context-dependent NULL pointer dereference, causing a denial-of-service crash. This vulnerability is associated with PyMongo used in...

Updated python-pymongo packages fix CVE-2013-2132

PyMongo before 2.5.2 is prone to a denial-of-service vulnerability. An attacker can remotely trigger a NULL pointer dereference causing MongoDB to crash CVE-2013-2132...

MGASA-2013-0201 Updated python-pymongo packages fix CVE-2013-2132

PyMongo before 2.5.2 is prone to a denial-of-service vulnerability. An attacker can remotely trigger a NULL pointer dereference causing MongoDB to crash CVE-2013-2132...

Ubuntu Update for pymongo USN-1897-1

Check for the Version of pymongo OpenVAS Vulnerability Test $Id: gbubuntuUSN18971.nasl 8542 2018-01-26 06:57:28Z teissa $ Ubuntu Update for pymongo USN-1897-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free softwar...

Ubuntu: Security Advisory (USN-1897-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 12.04 LTS / 12.10 / 13.04 : pymongo vulnerability (USN-1897-1)

Jibbers McGee discovered that PyMongo incorrectly handled certain invalid DBRefs. An attacker could use this issue to cause PyMongo to crash, resulting in a denial of service. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security...

USN-1897-1: PyMongo vulnerability

Jibbers McGee discovered that PyMongo incorrectly handled certain invalid DBRefs. An attacker could use this issue to cause PyMongo to crash, resulting in a denial of service...

[SECURITY] [DSA 2705-1] pymongo security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2705-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano June 10, 2013 http://www.debian.org/security/faq -...

pymongo DoS

NULL pointer dereference...

Debian DSA-2705-1 : pymongo - denial of service

Jibbers McGee discovered that PyMongo, a high-performance schema-free document-oriented data store, is prone to a denial-of-service vulnerability. An attacker can remotely trigger a NULL pointer dereference causing MongoDB to crash. The oldstable distribution squeeze is not affected by this issue...

[SECURITY] [DSA 2705-1] pymongo security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2705-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano June 10, 2013 http://www.debian.org/security/faq -...