CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2013-3219
https://notcve.org/view.php?id=CVE-2013-3219
01 Aug 2013 — bitcoind and Bitcoin-Qt 0.8.x before 0.8.1 do not enforce a certain block protocol rule, which allows remote attackers to bypass intended access restrictions and conduct double-spending attacks via a large block that triggers incorrect Berkeley DB locking in older product versions. bitcoind y Bitcoin-Qt 0.8.x anterior a 0.8.1, no refuerza un regla de bloqueo determinada, lo que permite a atacantes remotos evitar las restricciones de acceso y llevar a cabo ataques de "double-spending" a través de un gran blo... • https://en.bitcoin.it/wiki/BIP_0050 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 53EXPL: 0CVE-2013-2293
https://notcve.org/view.php?id=CVE-2013-2293
12 Mar 2013 — The CTransaction::FetchInputs method in bitcoind and Bitcoin-Qt before 0.8.0rc1 copies transactions from disk to memory without incrementally checking for spent prevouts, which allows remote attackers to cause a denial of service (disk I/O consumption) via a Bitcoin transaction with many inputs corresponding to many different parts of the stored block chain. El método CTransaction::FetchInputs en bitcoind y Bitcoin-Qt anterior a v0.8.0rc1 copia transacciones del disco a la memoria sin comprobar de forma inc... • https://bitcointalk.org/?topic=144122 • CWE-399: Resource Management Errors •
CVSS: 5.3EPSS: 0%CPEs: 54EXPL: 0CVE-2013-2272
https://notcve.org/view.php?id=CVE-2013-2272
12 Mar 2013 — The penny-flooding protection mechanism in the CTxMemPool::accept method in bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 allows remote attackers to determine associations between wallet addresses and IP addresses via a series of large Bitcoin transactions with insufficient fees. El mecanismo de protección "penny-flooding" en el método CTxMemPool::accept en bitcoind and Bitcoin-Qt before v0.4.9rc1, v0.... • https://bitcointalk.org/?topic=135856 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 54EXPL: 0CVE-2013-2273
https://notcve.org/view.php?id=CVE-2013-2273
12 Mar 2013 — bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 make it easier for remote attackers to obtain potentially sensitive information about returned change by leveraging certain predictability in the outputs of a Bitcoin transaction. bitcoind y Bitcoin-Qt anterior a v0.4.9rc1, v0.5.x anterior a v0.5.8rc1, v0.6.0 anterior a v0.6.0.11rc1, v0.6.1 hasta v0.6.5 anterior a v0.6.5rc1, y v0.7.x anterior a v0.7.3rc1 ha... • https://en.bitcoin.it/wiki/CVEs • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 43EXPL: 0CVE-2012-4684
https://notcve.org/view.php?id=CVE-2012-4684
12 Mar 2013 — The alert functionality in bitcoind and Bitcoin-Qt before 0.7.0 supports different character representations of the same signature data, but relies on a hash of this signature, which allows remote attackers to cause a denial of service (resource consumption) via a valid modified signature for a circulating alert. La funcionalidad Alert en bitcoind y Bitcoin-Qt anterior a v0.7.0 soporta diferentes representaciones de caractéres de la misma firma de datos, pero depende del hash de esta firma, lo que permite a... • https://bitcointalk.org/index.php?topic=148109.0 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2013-2292
https://notcve.org/view.php?id=CVE-2013-2292
12 Mar 2013 — bitcoind and Bitcoin-Qt 0.8.0 and earlier allow remote attackers to cause a denial of service (electricity consumption) by mining a block to create a nonstandard Bitcoin transaction containing multiple OP_CHECKSIG script opcodes. Bitcoind y Bitcoin-Qt v0.8.0 y anteriores permiten a atacantes remotos provocar una denegación de servicio por minar un bloque para crear una transacción Bitcoin no estándar opcodes OP_CHECKSIG. • https://bitcointalk.org/?topic=140078 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4682
https://notcve.org/view.php?id=CVE-2012-4682
14 Sep 2012 — Unspecified vulnerability in bitcoind and Bitcoin-Qt allows attackers to cause a denial of service via unknown vectors, a different vulnerability than CVE-2012-4683. Vulnerabilidad no especificada en bitcoind y Bitcoin-Qt permite a atacantes causar una denegación de servicio a través de vectores desconocidos, una vulnerabilidad diferente de CVE-2012-4683. • http://www.osvdb.org/85353 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4683
https://notcve.org/view.php?id=CVE-2012-4683
14 Sep 2012 — Unspecified vulnerability in bitcoind and Bitcoin-Qt allows attackers to cause a denial of service via unknown vectors, a different vulnerability than CVE-2012-4682. Vulnerabilidad no especificada en bitcoind y Bitcoin-Qt permite atacantes provocar una denegación de servicio a través de vectores desconocidos, es una vulnerabilidad distinta a CVE-2012-4682. • http://www.osvdb.org/85354 •
CVSS: 7.5EPSS: 4%CPEs: 12EXPL: 1CVE-2012-1909
https://notcve.org/view.php?id=CVE-2012-1909
06 Aug 2012 — The Bitcoin protocol, as used in bitcoind before 0.4.4, wxBitcoin, Bitcoin-Qt, and other programs, does not properly handle multiple transactions with the same identifier, which allows remote attackers to cause a denial of service (unspendable transaction) by leveraging the ability to create a duplicate coinbase transaction. El protocolo Bitcoin, como se usa en bitcoind anterior a v0.4.4, wxBitcoin, Bitcoin Qt, y otros programas, no maneja adecuadamente las transacciones múltiples con el mismo identificador... • http://r6.ca/blog/20120206T005236Z.html • CWE-16: Configuration •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2010-5140
https://notcve.org/view.php?id=CVE-2010-5140
06 Aug 2012 — wxBitcoin and bitcoind before 0.3.13 do not properly handle bitcoins associated with Bitcoin transactions that have zero confirmations, which allows remote attackers to cause a denial of service (invalid-transaction flood) by sending low-valued transactions without transaction fees. wxBitcoin y bitcoind anteriores a v0.3.13 no gestionan correctamente Bitcoins asociados a las transacciones Bitcoin que tienen cero confirmaciones, lo que permite a atacantes remotos provocar una denegación de servicio (transacc... • http://www.bitcoin.org/smf/index.php?topic=1306.0 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •