The parse_notify function in util.c in sgminer before 4.2.2 and cgminer 3.3.0 through 4.0.1 allows man-in-the-middle attackers to cause a denial of service (application exit) via a crafted (1) bbversion, (2) prev_hash, (3) nbit, or (4) ntime parameter in a mining.notify action stratum message.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-07-23T14:00:00

Updated: 2024-08-06T11:20:25.971Z

Reserved: 2014-06-20T00:00:00

Link: CVE-2014-4503

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2014-07-23T14:55:06.180

Modified: 2024-11-21T02:10:19.230

Link: CVE-2014-4503

cve-icon Redhat

No data.