The remote management interface of cgminer 4.10.0 and bfgminer 5.5.0 allows an authenticated remote malicious user to execute arbitrary code due to a stack-based buffer overflow in the addpool, failover-only, poolquota, and save command handlers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cgminer project cgminer 4.10.0 |
||
bfgminer bfgminer 5.5.0 |