CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-10724
https://notcve.org/view.php?id=CVE-2016-10724
05 Jul 2018 — Bitcoin Core before v0.13.0 allows denial of service (memory exhaustion) triggered by the remote network alert system (deprecated since Q1 2016) if an attacker can sign a message with a certain private key that had been known by unintended actors, because of an infinitely sized map. This affects other uses of the codebase, such as Bitcoin Knots before v0.13.0.knots20160814 and many altcoins. Bitcoin Core en versiones anteriores a la v0.13.0 permite una denegación de servicio (DoS) desencadenada por el siste... • https://bitcoin.org/en/posts/alert-key-and-vulnerabilities-disclosure • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2016-10725
https://notcve.org/view.php?id=CVE-2016-10725
05 Jul 2018 — In Bitcoin Core before v0.13.0, a non-final alert is able to block the special "final alert" (which is supposed to override all other alerts) because operations occur in the wrong order. This behavior occurs in the remote network alert system (deprecated since Q1 2016). This affects other uses of the codebase, such as Bitcoin Knots before v0.13.0.knots20160814 and many altcoins. En Bitcoin Core en versiones anteriores a la v0.13.0, una alerta no final puede bloquear la "alerta final" especial (que se supone... • https://bitcoin.org/en/posts/alert-key-and-vulnerabilities-disclosure • CWE-310: Cryptographic Issues •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2013-5700
https://notcve.org/view.php?id=CVE-2013-5700
10 Sep 2013 — The Bloom Filter implementation in bitcoind and Bitcoin-Qt 0.8.x before 0.8.4rc1 allows remote attackers to cause a denial of service (divide-by-zero error and daemon crash) via a crafted sequence of messages. La implementación del Filtro Bloom en bitcoind y Bitcoin-Qt 0.8.x anteriores a 0.8.4rc1 permite a atacantes remotos causar una denegación de servicio (error de división entre 0 y caída del demonio) a través de una secuencia de mensajes manipulada. • https://bitcointalk.org/index.php?topic=287351 • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 5%CPEs: 63EXPL: 0CVE-2013-3220
https://notcve.org/view.php?id=CVE-2013-3220
01 Aug 2013 — bitcoind and Bitcoin-Qt before 0.4.9rc2, 0.5.x before 0.5.8rc2, 0.6.x before 0.6.5rc2, and 0.7.x before 0.7.3rc2, and wxBitcoin, do not properly consider whether a block's size could require an excessive number of database locks, which allows remote attackers to cause a denial of service (split) and enable certain double-spending capabilities via a large block that triggers incorrect Berkeley DB locking. bitcoind y Bitcoin-Qt anterior a 0.4.9rc2, 0.5.x anterior a 0.5.8rc2, 0.6.x anterior a 0.6.5rc2, y 0.7.x... • https://en.bitcoin.it/wiki/BIP_0050 • CWE-399: Resource Management Errors •
CVSS: 5.3EPSS: 0%CPEs: 54EXPL: 0CVE-2013-2272
https://notcve.org/view.php?id=CVE-2013-2272
12 Mar 2013 — The penny-flooding protection mechanism in the CTxMemPool::accept method in bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 allows remote attackers to determine associations between wallet addresses and IP addresses via a series of large Bitcoin transactions with insufficient fees. El mecanismo de protección "penny-flooding" en el método CTxMemPool::accept en bitcoind and Bitcoin-Qt before v0.4.9rc1, v0.... • https://bitcointalk.org/?topic=135856 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 54EXPL: 0CVE-2013-2273
https://notcve.org/view.php?id=CVE-2013-2273
12 Mar 2013 — bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 make it easier for remote attackers to obtain potentially sensitive information about returned change by leveraging certain predictability in the outputs of a Bitcoin transaction. bitcoind y Bitcoin-Qt anterior a v0.4.9rc1, v0.5.x anterior a v0.5.8rc1, v0.6.0 anterior a v0.6.0.11rc1, v0.6.1 hasta v0.6.5 anterior a v0.6.5rc1, y v0.7.x anterior a v0.7.3rc1 ha... • https://en.bitcoin.it/wiki/CVEs • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2013-2292
https://notcve.org/view.php?id=CVE-2013-2292
12 Mar 2013 — bitcoind and Bitcoin-Qt 0.8.0 and earlier allow remote attackers to cause a denial of service (electricity consumption) by mining a block to create a nonstandard Bitcoin transaction containing multiple OP_CHECKSIG script opcodes. Bitcoind y Bitcoin-Qt v0.8.0 y anteriores permiten a atacantes remotos provocar una denegación de servicio por minar un bloque para crear una transacción Bitcoin no estándar opcodes OP_CHECKSIG. • https://bitcointalk.org/?topic=140078 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 53EXPL: 0CVE-2013-2293
https://notcve.org/view.php?id=CVE-2013-2293
12 Mar 2013 — The CTransaction::FetchInputs method in bitcoind and Bitcoin-Qt before 0.8.0rc1 copies transactions from disk to memory without incrementally checking for spent prevouts, which allows remote attackers to cause a denial of service (disk I/O consumption) via a Bitcoin transaction with many inputs corresponding to many different parts of the stored block chain. El método CTransaction::FetchInputs en bitcoind y Bitcoin-Qt anterior a v0.8.0rc1 copia transacciones del disco a la memoria sin comprobar de forma inc... • https://bitcointalk.org/?topic=144122 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 43EXPL: 0CVE-2012-4684
https://notcve.org/view.php?id=CVE-2012-4684
12 Mar 2013 — The alert functionality in bitcoind and Bitcoin-Qt before 0.7.0 supports different character representations of the same signature data, but relies on a hash of this signature, which allows remote attackers to cause a denial of service (resource consumption) via a valid modified signature for a circulating alert. La funcionalidad Alert en bitcoind y Bitcoin-Qt anterior a v0.7.0 soporta diferentes representaciones de caractéres de la misma firma de datos, pero depende del hash de esta firma, lo que permite a... • https://bitcointalk.org/index.php?topic=148109.0 • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 3%CPEs: 11EXPL: 1CVE-2012-1910
https://notcve.org/view.php?id=CVE-2012-1910
06 Aug 2012 — Bitcoin-Qt 0.5.0.x before 0.5.0.5; 0.5.1.x, 0.5.2.x, and 0.5.3.x before 0.5.3.1; and 0.6.x before 0.6.0rc4 on Windows does not use MinGW multithread-safe exception handling, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted Bitcoin protocol messages. Bitcoin-Qt 0.5.0.x anterior a 0.5.0.5; 0.5.1.x, 0.5.2.x, y 0.5.3.x anterior a 0.5.3.1; y 0.6.x anterior a 0.6.0rc4 sobre Windows no utiliza ningún manejador de excepciones MinGW multith... • http://gavintech.blogspot.com/2012/03/full-disclosure-bitcoin-qt-on-windows.html •