Unrated severityNVD Advisory· Published Jul 23, 2014· Updated Jun 17, 2026
CVE-2014-4501
CVE-2014-4501
Description
Multiple stack-based buffer overflows in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 3.3.0 allow remote pool servers to have unspecified impact via a long URL in a client.reconnect stratum message to the (1) extract_sockaddr or (2) parse_reconnect functions in util.c.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
22cpe:2.3:a:bfgminer:bfgminer:*:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:a:bfgminer:bfgminer:*:*:*:*:*:*:*:*range: <=3.2.9
- cpe:2.3:a:bfgminer:bfgminer:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:bfgminer:bfgminer:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:bfgminer:bfgminer:3.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:bfgminer:bfgminer:3.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:bfgminer:bfgminer:3.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:bfgminer:bfgminer:3.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:bfgminer:bfgminer:3.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:bfgminer:bfgminer:3.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:bfgminer:bfgminer:3.2.8:*:*:*:*:*:*:*
cpe:2.3:a:cgminer_project:cgminer:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:cgminer_project:cgminer:*:*:*:*:*:*:*:*range: <=4.3.4
- cpe:2.3:a:cgminer_project:cgminer:4.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:cgminer_project:cgminer:4.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:cgminer_project:cgminer:4.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:cgminer_project:cgminer:4.3.3:*:*:*:*:*:*:*
cpe:2.3:a:sgminer_project:sgminer:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:sgminer_project:sgminer:*:*:*:*:*:*:*:*range: <=4.2.1
- cpe:2.3:a:sgminer_project:sgminer:4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:sgminer_project:sgminer:4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:sgminer_project:sgminer:4.1.153:*:*:*:*:*:*:*
- cpe:2.3:a:sgminer_project:sgminer:4.1.242:*:*:*:*:*:*:*
- cpe:2.3:a:sgminer_project:sgminer:4.1.271:*:*:*:*:*:*:*
- cpe:2.3:a:sgminer_project:sgminer:4.2.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5- github.com/luke-jr/bfgminer/commit/c80ad8548251eb0e15329fc240c89070640c9d79nvdPatch
- github.com/sgminer-dev/sgminer/commit/b65574bef233474e915fdf18614aa211e31cc6c2nvdPatch
- github.com/ckolivas/cgminer/commit/e1c5050734123973b99d181c45e74b2cbb00272envdExploitPatch
- github.com/sgminer-dev/sgminer/commit/78cc408369bdbbd440196c93574098d1482efbcenvdExploitPatch
- seclists.org/fulldisclosure/2014/Jul/118nvd
News mentions
0No linked articles in our index yet.