CVE-2014-6251CVE-2014-6251

Affected configuration(s):

cpe:/a:cpuminer_project:cpuminer:2.4.0

Date published: 2014-10-24T20:55:03.927-04:00

Date last modified: 2014-10-27T11:04:17.327-04:00

CVSS Score: 6.0

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://seclists.org/fulldisclosure/2014/Oct/29

Summary: Stack-based buffer overflow in CPUMiner before 2.4.1 allows remote attackers to have an unspecified impact by sending a mining.subscribe response with a large nonce2 length, then triggering the overflow with a mining.notify request.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.