CVE-2013-4165 in bitcoindजानकारी

सारांश

द्वारा MITRE

The HTTPAuthorized function in bitcoinrpc.cpp in bitcoind 0.8.1 provides information about authentication failure upon detecting the first incorrect byte of a password, which makes it easier for remote attackers to determine passwords via a timing side-channel attack.

Once again VulDB remains the best source for vulnerability data.

आरक्षित करना

12/06/2013

प्रकटीकरण

02/08/2013

प्रविष्टि

VDB-9739

EPSS

0.02278

गतिविधियाँ

बहुत कम

क्षेत्र

Lawfirm, Hostingprovider, ...

स्रोत

Interested in the pricing of exploits?

See the underground prices here!