Sgminer

CVEs (3)

CVE	Vendor / Product	CVSS	EPSS	Published	Description
CVE-2014-4503	sgminer-dev Sgminer	—	0.00	Jul 23, 2014	The parse_notify function in util.c in sgminer before 4.2.2 and cgminer 3.3.0 through 4.0.1 allows man-in-the-middle attackers to cause a denial of service (application exit) via a crafted (1) bbversion, (2) prev_hash, (3) nbit, or (4) ntime parameter in a mining.notify action…
CVE-2014-4502	Luke Jr Bfgminer	—	0.01	Jul 23, 2014	Multiple heap-based buffer overflows in the parse_notify function in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 4.1.0 allow remote pool servers to have unspecified impact via a (1) large or (2) negative value in the Extranonc2_size parameter in a…
CVE-2014-4501	Luke Jr Bfgminer	—	0.00	Jul 23, 2014	Multiple stack-based buffer overflows in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 3.3.0 allow remote pool servers to have unspecified impact via a long URL in a client.reconnect stratum message to the (1) extract_sockaddr or (2) parse_reconnect functions…

CVE-2014-4503Jul 23, 2014
sgminer-dev
Sgminer
risk 0.00cvss —epss 0.00
The parse_notify function in util.c in sgminer before 4.2.2 and cgminer 3.3.0 through 4.0.1 allows man-in-the-middle attackers to cause a denial of service (application exit) via a crafted (1) bbversion, (2) prev_hash, (3) nbit, or (4) ntime parameter in a mining.notify action…
CVE-2014-4502Jul 23, 2014
Luke Jr
Bfgminer
risk 0.00cvss —epss 0.01
Multiple heap-based buffer overflows in the parse_notify function in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 4.1.0 allow remote pool servers to have unspecified impact via a (1) large or (2) negative value in the Extranonc2_size parameter in a…
CVE-2014-4501Jul 23, 2014
Luke Jr
Bfgminer
risk 0.00cvss —epss 0.00
Multiple stack-based buffer overflows in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 3.3.0 allow remote pool servers to have unspecified impact via a long URL in a client.reconnect stratum message to the (1) extract_sockaddr or (2) parse_reconnect functions…