Vulnerabilities

CVE-2013-1892

by Fred · 01/10/2013

MongoDB before 2.0.9 and 2.2.x before 2.2.4 does not properly validate requests to the nativeHelper function in SpiderMonkey, which allows remote authenticated users to cause a denial of service (invalid memory access and server crash) or execute arbitrary code via a crafted memory address in the first argument.

Date published : 2013-10-01

http://www.mongodb.org/about/alerts/

https://jira.mongodb.org/browse/SERVER-9124

Similar

Tags: Cybersecurity Alert