MongoDB.PCRE.Parsing.Stack.Consumption.Remote.DoS

description-logoDescription

This indicates an attack attempt against a Denial of Service vulnerability in MongoDB.
The vulnerability is caused by an error when the vulnerable application handles a malformed regular expression. A remote attacker may be able to exploit it to cause a denial of service condition on affected systems.

affected-products-logoAffected Products

MongoDB versions prior to 2.6.9 and 3.0.0-rc8

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade MongoDB server to the latest version.
https://jira.mongodb.org/browse/SERVER-17252

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)