EWBF Cuda Zcash Miner Security Breach

EWBF Cuda Zcash Miner is a software for mining bitcoins. miner statistics HTTP API is one of the statistics interfaces. A security vulnerability exists in the miner statistics HTTP API in EWBF Cuda Zcash Miner version 0.3.4b. An attacker could exploit this vulnerability to deny users access to...

EWBF Cuda Zcash Miner Security Breach

EWBF Cuda Zcash Miner is a software for mining bitcoins. miner statistics HTTP API is one of the statistics interfaces.A security vulnerability exists in the miner statistics HTTP API in EWBF Cuda Zcash Miner version 0.3.4b. An attacker could exploit this vulnerability to deny users access to...

Design/Logic Flaw

The miner statistics HTTP API in EWBF Cuda Zcash Miner Version 0.3.4b hangs on incoming TCP connections until some sort of request is made such as "GET / HTTP/1.1", which allows for a Denial of Service attack preventing a user from viewing their mining statistics by an attacker opening a session...

CVE-2017-15300

EWBF Cuda Zcash Miner Version 0.3.4b exposes a miner statistics HTTP API that hangs on incoming TCP connections until a request is received (e.g., GET / HTTP/1.1). This causes a Denial of Service where an attacker can open a session via telnet/netcat to the miner’s HTTP API port and prevent viewi...

CVE-2017-15300

The miner statistics HTTP API in EWBF Cuda Zcash Miner Version 0.3.4b hangs on incoming TCP connections until some sort of request is made such as "GET / HTTP/1.1", which allows for a Denial of Service attack preventing a user from viewing their mining statistics by an attacker opening a session...