3 matches found
CVE-2015-6964
MultiBit HD before 0.1.2 allows attackers to conduct bit-flipping attacks that insert unspendable Bitcoin addresses into the list that MultiBit uses to send fees to the developers. Attackers cannot realistically steal these fees for themselves. This occurs because there is no message authenticati...
CVE-2015-6964
MultiBit HD before 0.1.2 is vulnerable to bit-flipping attacks that can inject unspendable Bitcoin addresses into the developer-fee list due to the absence of a Message Authentication Code (MAC). The attack does not realistically steal fees, but it could disrupt fee payments. A patch is available...
CVE-2015-6964
MultiBit HD before 0.1.2 allows attackers to conduct bit-flipping attacks that insert unspendable Bitcoin addresses into the list that MultiBit uses to send fees to the developers. Attackers cannot realistically steal these fees for themselves. This occurs because there is no message authenticati...