[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] CVE-2014-6251 : Stack Overflow in CPUMiner When Submitting Upstream Work

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] CVE-2014-6251 : Stack Overflow in CPUMiner When Submitting Upstream Work
From: Mick Ayzenberg <mick@xxxxxxxxxxxxxxxxxx>
Date: Mon, 06 Oct 2014 18:29:05 -0700

Vulnerability title: Stack Overflow in CPUMiner When Submitting Upstream
Work
CVE: CVE-2014-6251
Affected version: CPUMiner before 2.4.1
Reported by: Mick Ayzenberg of Deja vu Security

Details:

A malicious pool or an attacker who is in the middle of a valid
stratum connection can respond to a 'mining.subscribe' and instruct a
miner to use a large nonce2 length.

The attacker can then instruct the miner to generate blocks with a
standard 'mining.notify' request. Once the miner has discovered a
valid block it will attempt to copy this large nonce into a fixed size
character array and overflow into stack memory.

_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] CVE-2014-4502 (Updated) : Invalid Handling of Length Parameter in Stratum mining.notify Message Leads to Heap Overflow
Next by Date: [FD] Yahoo! hacked on October 5, 2014...
Previous by thread: [FD] CVE-2014-4502 (Updated) : Invalid Handling of Length Parameter in Stratum mining.notify Message Leads to Heap Overflow
Next by thread: [FD] Yahoo! hacked on October 5, 2014...
Index(es):
- Date
- Thread