Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-2272

Опубликовано: 12 мар. 2013
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

The penny-flooding protection mechanism in the CTxMemPool::accept method in bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 allows remote attackers to determine associations between wallet addresses and IP addresses via a series of large Bitcoin transactions with insufficient fees.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:bitcoin:bitcoin-qt:*:rc4:*:*:*:*:*:*
Версия до 0.4.8 (включая)
cpe:2.3:a:bitcoin:bitcoin-qt:0.4:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.0.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.1:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.3.0:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.7:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.6.0.10:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:*:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.5:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.8:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.10:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.11:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.12:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.1:rc6:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.2:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.4:rc2:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.5:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.6:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.7:rc2:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.0:rc:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.3.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.5:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.6:rc2:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.5:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.6:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.7:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.8:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:*:rc4:*:*:*:*:*:*
Версия до 0.4.4 (включая)
cpe:2.3:a:bitcoin:bitcoind:0.5.7:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.6.0.10:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.6.4:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.7.2:*:*:*:*:*:*:*

EPSS

Процентиль: 44%
0.00221
Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

debian логотип

CVE-2013-2272

debian
почти 13 лет назад

The penny-flooding protection mechanism in the CTxMemPool::accept meth ...

github логотип

GHSA-97cf-hj3f-gxvg

github
больше 3 лет назад

The penny-flooding protection mechanism in the CTxMemPool::accept method in bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 allows remote attackers to determine associations between wallet addresses and IP addresses via a series of large Bitcoin transactions with insufficient fees.

EPSS

Процентиль: 44%
0.00221
Низкий

5 Medium

CVSS2

Дефекты

CWE-200