Lucene search
UbuntuUSN-1897-1HistoryJul 03, 2013 - 12:00 a.m.
PyMongo vulnerability
2013-07-0300:00:00
ubuntu.com
59
8 High
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
82.0%
Releases
- Ubuntu 13.04
- Ubuntu 12.10
- Ubuntu 12.04
Packages
- pymongo - Python interface to the MongoDB document-oriented database
Details
Jibbers McGee discovered that PyMongo incorrectly handled certain invalid
DBRefs. An attacker could use this issue to cause PyMongo to crash,
resulting in a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 13.04 | noarch | python-bson | <Β 2.2-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 13.04 | noarch | python-bson-ext | <Β 2.2-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 13.04 | noarch | python-pymongo | <Β 2.2-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 13.04 | noarch | python-pymongo-ext | <Β 2.2-4ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | python-bson | <Β 2.2-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | python-bson-ext | <Β 2.2-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | python-pymongo | <Β 2.2-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | python-pymongo-ext | <Β 2.2-2ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | python-bson | <Β 2.1-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | python-pymongo | <Β 2.1-1ubuntu0.1 | UNKNOWN |
References
Related
securityvulns
securityvulns
pymongo DoS
2013-06-17 00:00:00
[SECURITY] [DSA 2705-1] pymongo security update
2013-06-17 00:00:00
debian
debian
[SECURITY] [DSA 2705-1] pymongo security update
2013-06-10 17:02:56
[SECURITY] [DSA 2705-1] pymongo security update
2013-06-10 16:59:48
ubuntucve
ubuntucve
CVE-2013-2132
2013-06-03 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1897-1)
2013-07-05 00:00:00
Debian: Security Advisory (DSA-2705-1)
2013-06-09 00:00:00
Mageia: Security Advisory (MGASA-2013-0201)
2022-01-28 00:00:00
mageia
mageia
Updated python-pymongo packages fix CVE-2013-2132
2013-07-06 18:14:28
github
github
osv
osv
PYSEC-2013-30
2013-08-15 17:55:00
pymongo - denial of service
2013-06-10 00:00:00
cve
cve
CVE-2013-2132
2013-08-15 17:55:00
nessus
nessus
Debian DSA-2705-1 : pymongo - denial of service
2013-06-11 00:00:00
openSUSE Security Update : python-pymongo / python3-pymongo (openSUSE-SU-2013:1064-1)
2014-06-13 00:00:00
Ubuntu 12.04 LTS / 12.10 / 13.04 : pymongo vulnerability (USN-1897-1)
2013-07-05 00:00:00
seebug
seebug
MongoDB η©ΊζιεΌη¨ζη»ζε‘ζΌζ΄(CVE-2013-2132)
2013-06-03 00:00:00
debiancve
debiancve
CVE-2013-2132
2013-08-15 17:55:00
prion
prion
Null pointer dereference
2013-08-15 17:55:00
redhat
redhat
n0where
n0where
MongoDB Security Audit: mongoaudit
2017-02-16 06:05:56
kitploit
kitploit
mongoaudit - A Powerful MongoDB Auditing and Pentesting Tool
2017-02-22 14:04:00
8 High
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
82.0%
Related for USN-1897-1