Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MongoDb Out-of-bounds Read Vulnerability - CVE-2017-14227 - Vulnerability Database
MongoDb

MongoDb Out-of-bounds Read Vulnerability - CVE-2017-14227

High
Reference: CVE-2017-14227
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-14227
Title: MongoDb Out-of-bounds Read Vulnerability
Overview:

In MongoDB libbson 1.7.0 the bson_iter_codewscope function in bson-iter.c miscalculates a bson_utf8_validate length argument which allows remote attackers to cause a denial of service (heap-based buffer over-read in the bson_utf8_validate function in bson-utf8.c) as demonstrated by bson-to-json.c.