CVSS: 5.3EPSS: 0%CPEs: 54EXPL: 0CVE-2013-2272
https://notcve.org/view.php?id=CVE-2013-2272
12 Mar 2013 — The penny-flooding protection mechanism in the CTxMemPool::accept method in bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 allows remote attackers to determine associations between wallet addresses and IP addresses via a series of large Bitcoin transactions with insufficient fees. El mecanismo de protección "penny-flooding" en el método CTxMemPool::accept en bitcoind and Bitcoin-Qt before v0.4.9rc1, v0.... • https://bitcointalk.org/?topic=135856 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 54EXPL: 0CVE-2013-2273
https://notcve.org/view.php?id=CVE-2013-2273
12 Mar 2013 — bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 make it easier for remote attackers to obtain potentially sensitive information about returned change by leveraging certain predictability in the outputs of a Bitcoin transaction. bitcoind y Bitcoin-Qt anterior a v0.4.9rc1, v0.5.x anterior a v0.5.8rc1, v0.6.0 anterior a v0.6.0.11rc1, v0.6.1 hasta v0.6.5 anterior a v0.6.5rc1, y v0.7.x anterior a v0.7.3rc1 ha... • https://en.bitcoin.it/wiki/CVEs • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2013-2292
https://notcve.org/view.php?id=CVE-2013-2292
12 Mar 2013 — bitcoind and Bitcoin-Qt 0.8.0 and earlier allow remote attackers to cause a denial of service (electricity consumption) by mining a block to create a nonstandard Bitcoin transaction containing multiple OP_CHECKSIG script opcodes. Bitcoind y Bitcoin-Qt v0.8.0 y anteriores permiten a atacantes remotos provocar una denegación de servicio por minar un bloque para crear una transacción Bitcoin no estándar opcodes OP_CHECKSIG. • https://bitcointalk.org/?topic=140078 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 53EXPL: 0CVE-2013-2293
https://notcve.org/view.php?id=CVE-2013-2293
12 Mar 2013 — The CTransaction::FetchInputs method in bitcoind and Bitcoin-Qt before 0.8.0rc1 copies transactions from disk to memory without incrementally checking for spent prevouts, which allows remote attackers to cause a denial of service (disk I/O consumption) via a Bitcoin transaction with many inputs corresponding to many different parts of the stored block chain. El método CTransaction::FetchInputs en bitcoind y Bitcoin-Qt anterior a v0.8.0rc1 copia transacciones del disco a la memoria sin comprobar de forma inc... • https://bitcointalk.org/?topic=144122 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 43EXPL: 0CVE-2012-4684
https://notcve.org/view.php?id=CVE-2012-4684
12 Mar 2013 — The alert functionality in bitcoind and Bitcoin-Qt before 0.7.0 supports different character representations of the same signature data, but relies on a hash of this signature, which allows remote attackers to cause a denial of service (resource consumption) via a valid modified signature for a circulating alert. La funcionalidad Alert en bitcoind y Bitcoin-Qt anterior a v0.7.0 soporta diferentes representaciones de caractéres de la misma firma de datos, pero depende del hash de esta firma, lo que permite a... • https://bitcointalk.org/index.php?topic=148109.0 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 1CVE-2010-5139
https://notcve.org/view.php?id=CVE-2010-5139
06 Aug 2012 — Integer overflow in wxBitcoin and bitcoind before 0.3.11 allows remote attackers to bypass intended economic restrictions and create many bitcoins via a crafted Bitcoin transaction. Desbordamiento de entero en wxBitcoin y bitcoind anteriores a v0.3.11 que permite a atacantes remotos eludir las restricciones económicas impuestas y crear un gran número de Bitcoins a través de una transacción Bitcoin modificada. • https://bitcointalk.org/index.php?topic=822.0 • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2010-5140
https://notcve.org/view.php?id=CVE-2010-5140
06 Aug 2012 — wxBitcoin and bitcoind before 0.3.13 do not properly handle bitcoins associated with Bitcoin transactions that have zero confirmations, which allows remote attackers to cause a denial of service (invalid-transaction flood) by sending low-valued transactions without transaction fees. wxBitcoin y bitcoind anteriores a v0.3.13 no gestionan correctamente Bitcoins asociados a las transacciones Bitcoin que tienen cero confirmaciones, lo que permite a atacantes remotos provocar una denegación de servicio (transacc... • http://www.bitcoin.org/smf/index.php?topic=1306.0 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0CVE-2011-4447
https://notcve.org/view.php?id=CVE-2011-4447
06 Aug 2012 — The "encrypt wallet" feature in wxBitcoin and bitcoind 0.4.x before 0.4.1, and 0.5.0rc, does not properly interact with the deletion functionality of BSDDB, which allows context-dependent attackers to obtain unencrypted private keys from Bitcoin wallet files by bypassing the BSDDB interface and reading entries that are marked for deletion. La característica "encrypt wallet" en wxBitcoin y en bitcoind v0.4.x y anteriores a v0.4.1, y v0.5.0rc no interactúa adecuadamente con la funcionalidad de eliminación de ... • http://bitcoin.org/releases/2011/11/21/v0.5.0.html • CWE-310: Cryptographic Issues •
CVSS: 9.8EPSS: 3%CPEs: 11EXPL: 1CVE-2012-1910
https://notcve.org/view.php?id=CVE-2012-1910
06 Aug 2012 — Bitcoin-Qt 0.5.0.x before 0.5.0.5; 0.5.1.x, 0.5.2.x, and 0.5.3.x before 0.5.3.1; and 0.6.x before 0.6.0rc4 on Windows does not use MinGW multithread-safe exception handling, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted Bitcoin protocol messages. Bitcoin-Qt 0.5.0.x anterior a 0.5.0.5; 0.5.1.x, 0.5.2.x, y 0.5.3.x anterior a 0.5.3.1; y 0.6.x anterior a 0.6.0rc4 sobre Windows no utiliza ningún manejador de excepciones MinGW multith... • http://gavintech.blogspot.com/2012/03/full-disclosure-bitcoin-qt-on-windows.html •
CVSS: 7.5EPSS: 1%CPEs: 13EXPL: 0CVE-2012-2459
https://notcve.org/view.php?id=CVE-2012-2459
06 Aug 2012 — Unspecified vulnerability in bitcoind and Bitcoin-Qt before 0.4.6, 0.5.x before 0.5.5, 0.6.0.x before 0.6.0.7, and 0.6.x before 0.6.2 allows remote attackers to cause a denial of service (block-processing outage and incorrect block count) via unknown behavior on a Bitcoin network. Vulnerabilidad no especificada en bitcoind y Bitcoin-Qt anterior a v0.4.6, v0.5.x anterior a v0.5.5, v0.6.0.7 0.6.0.x, y v0.6.x anterior a v0.6.2 permite a atacantes remotos causar una denegación de servicio (bloque de procesamien... • https://bitcointalk.org/?topic=81749 •