Published: 06/08/2012 Updated: 18/03/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The Bitcoin protocol, as used in bitcoind prior to 0.4.4, wxBitcoin, Bitcoin-Qt, and other programs, does not properly handle multiple transactions with the same identifier, which allows remote malicious users to cause a denial of service (unspendable transaction) by leveraging the ability to create a duplicate coinbase transaction.

Vulnerable Product	Search on Vulmon	Subscribe to Product
bitcoin bitcoin core 0.4.0
bitcoin bitcoin core 0.3.12
bitcoin bitcoin core 0.3.11
bitcoin bitcoin core 0.3.10
bitcoin bitcoin core 0.4.1
bitcoin bitcoin core 0.3.5
bitcoin wxbitcoin
bitcoin bitcoin core
bitcoin bitcoin core 0.3.8
bitcoin bitcoin core 0.3.4

CWE-16 http://r6.ca/blog/20120206T005236Z.html http://sourceforge.net/mailarchive/forum.php?thread_name=CAPg%2BsBhmGHnMResVxPDZdfpmWTb9uqD0RrQD7oSXBQq7oHpm8g%40mail.gmail.com&forum_name=bitcoin-development https://github.com/sipa/bitcoin/commit/a206b0ea12eb4606b93323268fc81a4f1f952531 https://bugs.gentoo.org/show_bug.cgi?id=407793 https://bitcointalk.org/index.php?topic=67738.0 https://en.bitcoin.it/wiki/BIP_0030 https://en.bitcoin.it/wiki/CVEs https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-1909

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect