Ubuntu.comUB:CVE-2012-1909CVE-2012-1909
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.028 Low
EPSS
Percentile
90.7%
The Bitcoin protocol, as used in bitcoind before 0.4.4, wxBitcoin,
Bitcoin-Qt, and other programs, does not properly handle multiple
transactions with the same identifier, which allows remote attackers to
cause a denial of service (unspendable transaction) by leveraging the
ability to create a duplicate coinbase transaction.
Bugs
References
r6.ca/blog/20120206T005236Z.html
sourceforge.net/mailarchive/forum.php?thread_name=CAPg%2BsBhmGHnMResVxPDZdfpmWTb9uqD0RrQD7oSXBQq7oHpm8g%40mail.gmail.com&forum_name=bitcoin-development
bitcointalk.org/index.php?topic=67738.0
en.bitcoin.it/wiki/BIP_0030
en.bitcoin.it/wiki/CVEs
launchpad.net/bugs/cve/CVE-2012-1909
nvd.nist.gov/vuln/detail/CVE-2012-1909
security-tracker.debian.org/tracker/CVE-2012-1909
www.cve.org/CVERecord?id=CVE-2012-1909
Related
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.028 Low
EPSS
Percentile
90.7%