MultiBit HD before 0.1.2 allows attackers to conduct bit-flipping attacks that insert unspendable Bitcoin addresses into the list that MultiBit uses to send fees to the developers. (Attackers cannot realistically steal these fees for themselves.) This occurs because there is no message authentication code (MAC).
Metrics
Affected Vendors & Products
References
History
Tue, 24 Sep 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:multibit:multibit_hd:-:*:*:*:*:*:*:* | |
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-25T00:00:00
Updated: 2024-09-24T17:39:24.320Z
Reserved: 2015-09-16T00:00:00
Link: CVE-2015-6964
Vulnrichment
Updated: 2024-08-06T07:36:34.885Z
NVD
Status : Modified
Published: 2023-09-25T05:15:10.243
Modified: 2024-11-21T02:35:57.057
Link: CVE-2015-6964
Redhat
No data.