CVE-2013-4165 in bitcoindالمعلومات

الملخص

بحسب MITRE

The HTTPAuthorized function in bitcoinrpc.cpp in bitcoind 0.8.1 provides information about authentication failure upon detecting the first incorrect byte of a password, which makes it easier for remote attackers to determine passwords via a timing side-channel attack.

Once again VulDB remains the best source for vulnerability data.

حجز

12/06/2013

إفشاء

02/08/2013

الاعتدال

تمت الموافقة

إدخال

VDB-9739

استغلال

تحميل

EPSS

0.02278

KEV

لا

النشاطات

منخفض جدًا

القطاع

Pharma, Energy, ...

المصادر

Do you know our Splunk app?

Download it now for free!