CVE-2012-1909

EUVD-2012-1918
The Bitcoin protocol, as used in bitcoind before 0.4.4, wxBitcoin, Bitcoin-Qt, and other programs, does not properly handle multiple transactions with the same identifier, which allows remote attackers to cause a denial of service (unspendable transaction) by leveraging the ability to create a duplicate coinbase transaction.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
Affected Products (NVD)
VendorProductVersion
bitcoinbitcoin_core
𝑥
≤ 0.4.4
bitcoinbitcoin_core
0.3.4
bitcoinbitcoin_core
0.3.5
bitcoinbitcoin_core
0.3.8
bitcoinbitcoin_core
0.3.10
bitcoinbitcoin_core
0.3.11
bitcoinbitcoin_core
0.3.12
bitcoinbitcoin_core
0.4.0
bitcoinbitcoin_core
0.4.1
bitcoinbitcoin_core
0.4.1:rc6
bitcoinwxbitcoin
*
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
bitcoin
hardy
dne
lucid
dne
natty
dne
oneiric
ignored
precise
ignored
quantal
not-affected
raring
not-affected
saucy
not-affected
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
Common Weakness Enumeration
References
http://r6.ca/blog/20120206T005236Z.html
http://sourceforge.net/mailarchive/forum.php?thread_name=CAPg%2BsBhmGHnMResVxPDZdfpmWTb9uqD0RrQD7oSXBQq7oHpm8g%40mail.gmail.com&forum_name=bitcoin-development
https://bitcointalk.org/index.php?topic=67738.0
https://bugs.gentoo.org/show_bug.cgi?id=407793
https://en.bitcoin.it/wiki/BIP_0030
https://en.bitcoin.it/wiki/CVEs
https://github.com/sipa/bitcoin/commit/a206b0ea12eb4606b93323268fc81a4f1f952531
http://r6.ca/blog/20120206T005236Z.html
http://sourceforge.net/mailarchive/forum.php?thread_name=CAPg%2BsBhmGHnMResVxPDZdfpmWTb9uqD0RrQD7oSXBQq7oHpm8g%40mail.gmail.com&forum_name=bitcoin-development
https://bitcointalk.org/index.php?topic=67738.0
https://bugs.gentoo.org/show_bug.cgi?id=407793
https://en.bitcoin.it/wiki/BIP_0030
https://en.bitcoin.it/wiki/CVEs
https://github.com/sipa/bitcoin/commit/a206b0ea12eb4606b93323268fc81a4f1f952531