Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-3220

Опубликовано: 02 авг. 2013
Источник: nvd
CVSS2: 6.4
EPSS Низкий

Описание

bitcoind and Bitcoin-Qt before 0.4.9rc2, 0.5.x before 0.5.8rc2, 0.6.x before 0.6.5rc2, and 0.7.x before 0.7.3rc2, and wxBitcoin, do not properly consider whether a block's size could require an excessive number of database locks, which allows remote attackers to cause a denial of service (split) and enable certain double-spending capabilities via a large block that triggers incorrect Berkeley DB locking.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:bitcoin:bitcoin-qt:*:rc1:*:*:*:*:*:*
Версия до 0.4.9 (включая)
cpe:2.3:a:bitcoin:bitcoin-qt:0.4:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.4.8:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.0.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.1:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.3.0:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.7:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.5.8:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.6.0.10:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin-qt:0.7.3:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:*:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.5:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.8:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.10:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.11:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.3.12:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.0:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.1:rc6:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.2:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.4:rc2:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.5:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.6:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.4.7:rc2:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.0:rc:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.3.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.5:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.5.6:rc2:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.4:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.5:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.6:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.7:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.0.8:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoin_core:0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:*:rc1:*:*:*:*:*:*
Версия до 0.4.9 (включая)
cpe:2.3:a:bitcoin:bitcoind:0.4.4:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.5.7:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.5.8:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.6.0.10:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.6.4:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.6.5:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.7.0:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:bitcoin:bitcoind:0.7.3:rc1:*:*:*:*:*:*
cpe:2.3:a:bitcoin:qitcoin-qt:0.6.4:rc4:*:*:*:*:*:*
cpe:2.3:a:bitcoin:qitcoin-qt:0.6.5:rc1:*:*:*:*:*:*

EPSS

Процентиль: 81%
0.01533
Низкий

6.4 Medium

CVSS2

Дефекты

CWE-399

Связанные уязвимости

ubuntu логотип

CVE-2013-3220

ubuntu
больше 12 лет назад

bitcoind and Bitcoin-Qt before 0.4.9rc2, 0.5.x before 0.5.8rc2, 0.6.x before 0.6.5rc2, and 0.7.x before 0.7.3rc2, and wxBitcoin, do not properly consider whether a block's size could require an excessive number of database locks, which allows remote attackers to cause a denial of service (split) and enable certain double-spending capabilities via a large block that triggers incorrect Berkeley DB locking.

debian логотип

CVE-2013-3220

debian
больше 12 лет назад

bitcoind and Bitcoin-Qt before 0.4.9rc2, 0.5.x before 0.5.8rc2, 0.6.x ...

github логотип

GHSA-xr7c-w8xq-cg55

github
больше 3 лет назад

bitcoind and Bitcoin-Qt before 0.4.9rc2, 0.5.x before 0.5.8rc2, 0.6.x before 0.6.5rc2, and 0.7.x before 0.7.3rc2, and wxBitcoin, do not properly consider whether a block's size could require an excessive number of database locks, which allows remote attackers to cause a denial of service (split) and enable certain double-spending capabilities via a large block that triggers incorrect Berkeley DB locking.

EPSS

Процентиль: 81%
0.01533
Низкий

6.4 Medium

CVSS2

Дефекты

CWE-399