CVE-2013-3969 - OpenCVE

The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possibly execute arbitrary code via an invalid RefDB object.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:S/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Mongodb	Mongodb

Configuration 1 [-]

OR	cpe:2.3:a:mongodb:mongodb:2.4.0:::::::*
	cpe:2.3:a:mongodb:mongodb:2.4.1:::::::*
	cpe:2.3:a:mongodb:mongodb:2.4.2:::::::*
	cpe:2.3:a:mongodb:mongodb:2.4.3:::::::*
	cpe:2.3:a:mongodb:mongodb:2.4.4:::::::*

References

Link	Resource
http://blog.scrt.ch/2013/06/04/mongodb-rce-by-databasespraying/
http://secunia.com/advisories/54170	Vendor Advisory
http://www.mongodb.org/about/alerts/	Vendor Advisory
http://www.openwall.com/lists/oss-security/2013/07/30/10
https://jira.mongodb.org/browse/SERVER-9878

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-10-03T16:14:44

Updated: 2022-10-03T16:14:44

Reserved: 2022-10-03T00:00:00

Link: CVE-2013-3969

JSON object: View

NVD Information

Status : Analyzed

Published: 2013-10-01T20:55:33.687

Modified: 2013-10-02T20:38:27.303

Link: CVE-2013-3969

JSON object: View

Redhat Information

No data.

CWE

CWE-399

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possibly execute arbitrary code via an invalid RefDB object."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-10-03T16:14:44", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[oss-security] 20130730 Re: CVE Request - MongoDB <=2.4.4 uninitialized object", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2013/07/30/10"}, {"tags": ["x_refsource_MISC"], "url": "http://blog.scrt.ch/2013/06/04/mongodb-rce-by-databasespraying/"}, {"name": "54170", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/54170"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.mongodb.org/about/alerts/"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://jira.mongodb.org/browse/SERVER-9878"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-3969", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possibly execute arbitrary code via an invalid RefDB object."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20130730 Re: CVE Request - MongoDB <=2.4.4 uninitialized object", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2013/07/30/10"}, {"name": "http://blog.scrt.ch/2013/06/04/mongodb-rce-by-databasespraying/", "refsource": "MISC", "url": "http://blog.scrt.ch/2013/06/04/mongodb-rce-by-databasespraying/"}, {"name": "54170", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/54170"}, {"name": "http://www.mongodb.org/about/alerts/", "refsource": "CONFIRM", "url": "http://www.mongodb.org/about/alerts/"}, {"name": "https://jira.mongodb.org/browse/SERVER-9878", "refsource": "CONFIRM", "url": "https://jira.mongodb.org/browse/SERVER-9878"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-3969", "datePublished": "2022-10-03T16:14:44", "dateReserved": "2022-10-03T00:00:00", "dateUpdated": "2022-10-03T16:14:44", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mongodb:mongodb:2.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "FB2A001B-D790-4DEA-9420-6BD18F1D0BFF", "vulnerable": true}, {"criteria": "cpe:2.3:a:mongodb:mongodb:2.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "AD7C03C0-5B7B-4808-8F50-1D5517CEF61F", "vulnerable": true}, {"criteria": "cpe:2.3:a:mongodb:mongodb:2.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "C37483C2-DA83-4BE4-9960-5A691661670B", "vulnerable": true}, {"criteria": "cpe:2.3:a:mongodb:mongodb:2.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "039B2CC3-CB74-4ADE-BEEF-65A5A0C4F6E1", "vulnerable": true}, {"criteria": "cpe:2.3:a:mongodb:mongodb:2.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "86DB7435-C47E-426E-B3A6-216089F4CCAD", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possibly execute arbitrary code via an invalid RefDB object."}, {"lang": "es", "value": "Find prototype en scripting/engine_v8.h en MongoDB 2.4.0 hasta 2.4.4 permite a usuarios autenticados remotos causar una denegaci\u00f3n de servicio (referencia a puntero no inicializado y ca\u00edda del servidor) o posiblemente ejecutar c\u00f3digo a discrecci\u00f3n a trav\u00e9s de un objeto RefDB inv\u00e1lido."}], "id": "CVE-2013-3969", "lastModified": "2013-10-02T20:38:27.303", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-10-01T20:55:33.687", "references": [{"source": "cve@mitre.org", "url": "http://blog.scrt.ch/2013/06/04/mongodb-rce-by-databasespraying/"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/54170"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.mongodb.org/about/alerts/"}, {"source": "cve@mitre.org", "url": "http://www.openwall.com/lists/oss-security/2013/07/30/10"}, {"source": "cve@mitre.org", "url": "https://jira.mongodb.org/browse/SERVER-9878"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-399"}], "source": "nvd@nist.gov", "type": "Primary"}]}