CVE-2010-5139

2022-10-0316:21:02

CWE-189

[email protected]

web.nvd.nist.gov

cve

wxbitcoin

bitcoind

integer overflow

economic restrictions

bitcoin transaction

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.2%

JSON

Integer overflow in wxBitcoin and bitcoind before 0.3.11 allows remote attackers to bypass intended economic restrictions and create many bitcoins via a crafted Bitcoin transaction.

Affected configurations

NVD

Node

bitcoinbitcoin_coreRange≤0.3.10

bitcoinbitcoin_coreMatch0.3.4

bitcoinbitcoin_coreMatch0.3.5

bitcoinbitcoin_coreMatch0.3.8

bitcoinwxbitcoinRange≤0.3.10

bitcoinwxbitcoinMatch0.3.4

bitcoinwxbitcoinMatch0.3.5

bitcoinwxbitcoinMatch0.3.8

CPENameOperatorVersion
bitcoin:bitcoin_corebitcoin bitcoin corele0.3.10
bitcoin:bitcoin_corebitcoin bitcoin coreeq0.3.4
bitcoin:bitcoin_corebitcoin bitcoin coreeq0.3.5
bitcoin:bitcoin_corebitcoin bitcoin coreeq0.3.8
bitcoin:wxbitcoinbitcoin wxbitcoinle0.3.10
bitcoin:wxbitcoinbitcoin wxbitcoineq0.3.4
bitcoin:wxbitcoinbitcoin wxbitcoineq0.3.5
bitcoin:wxbitcoinbitcoin wxbitcoineq0.3.8

CPE	Name	Operator	Version
bitcoin:bitcoin_core	bitcoin bitcoin core	le	0.3.10
bitcoin:bitcoin_core	bitcoin bitcoin core	eq	0.3.4
bitcoin:bitcoin_core	bitcoin bitcoin core	eq	0.3.5
bitcoin:bitcoin_core	bitcoin bitcoin core	eq	0.3.8
bitcoin:wxbitcoin	bitcoin wxbitcoin	le	0.3.10
bitcoin:wxbitcoin	bitcoin wxbitcoin	eq	0.3.4
bitcoin:wxbitcoin	bitcoin wxbitcoin	eq	0.3.5
bitcoin:wxbitcoin	bitcoin wxbitcoin	eq	0.3.8