Code injection

2013-08-0212:10:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.8%

JSON

bitcoind and Bitcoin-Qt before 0.4.9rc2, 0.5.x before 0.5.8rc2, 0.6.x before 0.6.5rc2, and 0.7.x before 0.7.3rc2, and wxBitcoin, do not properly consider whether a block’s size could require an excessive number of database locks, which allows remote attackers to cause a denial of service (split) and enable certain double-spending capabilities via a large block that triggers incorrect Berkeley DB locking.

CPENameOperatorVersion
bitcoin-qteq0.5.0 rc1
bitcoin-qteq0.5.0.4
bitcoin-qteq0.7.2
bitcoin-qteq0.6.0.10 rc4
bitcoin-qteq0.7.3 rc1
bitcoin-qteq0.7.1
bitcoin-qtle0.4.9
bitcoin-qteq0.7.0 rc1
bitcoin-qteq0.6.3
bitcoin-qteq0.4.8 rc4

Name	Operator	Version
bitcoin-qt	eq	0.5.0 rc1
bitcoin-qt	eq	0.5.0.4
bitcoin-qt	eq	0.7.2
bitcoin-qt	eq	0.6.0.10 rc4
bitcoin-qt	eq	0.7.3 rc1
bitcoin-qt	eq	0.7.1
bitcoin-qt	le	0.4.9
bitcoin-qt	eq	0.7.0 rc1
bitcoin-qt	eq	0.6.3
bitcoin-qt	eq	0.4.8 rc4