Vulnerability Details CVE-2013-1892
MongoDB before 2.0.9 and 2.2.x before 2.2.4 does not properly validate requests to the nativeHelper function in SpiderMonkey, which allows remote authenticated users to cause a denial of service (invalid memory access and server crash) or execute arbitrary code via a crafted memory address in the first argument.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.606
EPSS Ranking 98.2%
CVSS Severity
CVSS v2 Score 6.0
References
- http://blog.scrt.ch/2013/03/24/mongodb-0-day-ssji-to-rce/
- http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101630.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101679.html
- http://rhn.redhat.com/errata/RHSA-2013-1170.html
- http://www.exploit-db.com/exploits/24935
- http://www.exploit-db.com/exploits/24947
- http://www.mongodb.org/about/alerts/
- http://www.openwall.com/lists/oss-security/2013/03/25/9
- https://jira.mongodb.org/browse/SERVER-9124
- http://blog.scrt.ch/2013/03/24/mongodb-0-day-ssji-to-rce/
- http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101630.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101679.html
- http://rhn.redhat.com/errata/RHSA-2013-1170.html
- http://www.exploit-db.com/exploits/24935
- http://www.exploit-db.com/exploits/24947
- http://www.mongodb.org/about/alerts/
- http://www.openwall.com/lists/oss-security/2013/03/25/9
- https://jira.mongodb.org/browse/SERVER-9124
Products affected by CVE-2013-1892
-
cpe:2.3:a:mongodb:mongodb:-
-
cpe:2.3:a:mongodb:mongodb:0.0.1
-
cpe:2.3:a:mongodb:mongodb:0.1.0
-
cpe:2.3:a:mongodb:mongodb:0.1.1
-
cpe:2.3:a:mongodb:mongodb:0.2.0
-
cpe:2.3:a:mongodb:mongodb:0.2.1
-
cpe:2.3:a:mongodb:mongodb:0.3.0
-
cpe:2.3:a:mongodb:mongodb:0.4.0
-
cpe:2.3:a:mongodb:mongodb:0.4.1
-
cpe:2.3:a:mongodb:mongodb:0.4.2
-
cpe:2.3:a:mongodb:mongodb:0.5.0
-
cpe:2.3:a:mongodb:mongodb:0.6.0
-
cpe:2.3:a:mongodb:mongodb:0.6.1
-
cpe:2.3:a:mongodb:mongodb:0.6.10
-
cpe:2.3:a:mongodb:mongodb:0.6.11
-
cpe:2.3:a:mongodb:mongodb:0.6.12
-
cpe:2.3:a:mongodb:mongodb:0.6.13
-
cpe:2.3:a:mongodb:mongodb:0.6.14
-
cpe:2.3:a:mongodb:mongodb:0.6.2
-
cpe:2.3:a:mongodb:mongodb:0.6.3
-
cpe:2.3:a:mongodb:mongodb:0.6.4
-
cpe:2.3:a:mongodb:mongodb:0.6.5
-
cpe:2.3:a:mongodb:mongodb:0.6.6
-
cpe:2.3:a:mongodb:mongodb:0.6.7
-
cpe:2.3:a:mongodb:mongodb:0.6.8
-
cpe:2.3:a:mongodb:mongodb:0.6.9
-
cpe:2.3:a:mongodb:mongodb:0.7.0
-
cpe:2.3:a:mongodb:mongodb:0.8.0
-
cpe:2.3:a:mongodb:mongodb:1.2.0
-
cpe:2.3:a:mongodb:mongodb:1.4.0
-
cpe:2.3:a:mongodb:mongodb:1.6.0
-
cpe:2.3:a:mongodb:mongodb:1.7.0
-
cpe:2.3:a:mongodb:mongodb:1.8.0
-
cpe:2.3:a:mongodb:mongodb:2.0.0
-
cpe:2.3:a:mongodb:mongodb:2.0.1
-
cpe:2.3:a:mongodb:mongodb:2.0.2
-
cpe:2.3:a:mongodb:mongodb:2.0.3
-
cpe:2.3:a:mongodb:mongodb:2.0.4
-
cpe:2.3:a:mongodb:mongodb:2.0.5
-
cpe:2.3:a:mongodb:mongodb:2.0.6
-
cpe:2.3:a:mongodb:mongodb:2.0.7
-
cpe:2.3:a:mongodb:mongodb:2.0.8
-
cpe:2.3:a:mongodb:mongodb:2.2.0
-
cpe:2.3:a:mongodb:mongodb:2.2.1
-
cpe:2.3:a:mongodb:mongodb:2.2.2
-
cpe:2.3:a:mongodb:mongodb:2.2.3
-
cpe:2.3:o:redhat:enterprise_mrg:2.3