CVE-2013-2272

The penny-flooding protection mechanism in the CTxMemPool::accept method in bitcoind and Bitcoin-Qt before 0.4.9rc1, 0.5.x before 0.5.8rc1, 0.6.0 before 0.6.0.11rc1, 0.6.1 through 0.6.5 before 0.6.5rc1, and 0.7.x before 0.7.3rc1 allows remote attackers to determine associations between wallet addresses and IP addresses via a series of large Bitcoin transactions with insufficient fees.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
VendorProductVersion
bitcoinbitcoin-qt
𝑥
≤ 0.4.8
bitcoinbitcoin-qt
0.4:rc4
bitcoinbitcoin-qt
0.5.0:rc1
bitcoinbitcoin-qt
0.5.0.4
bitcoinbitcoin-qt
0.5.1:rc1
bitcoinbitcoin-qt
0.5.3.0
bitcoinbitcoin-qt
0.5.7
bitcoinbitcoin-qt
0.6.0.10:rc4
bitcoinbitcoin-qt
0.6.3
bitcoinbitcoin-qt
0.7.0:rc1
bitcoinbitcoin-qt
0.7.1
bitcoinbitcoin-qt
0.7.2
bitcoinbitcoin_core
*
bitcoinbitcoin_core
0.3.4
bitcoinbitcoin_core
0.3.5
bitcoinbitcoin_core
0.3.8
bitcoinbitcoin_core
0.3.10
bitcoinbitcoin_core
0.3.11
bitcoinbitcoin_core
0.3.12
bitcoinbitcoin_core
0.4.0
bitcoinbitcoin_core
0.4.1
bitcoinbitcoin_core
0.4.1:rc6
bitcoinbitcoin_core
0.4.2
bitcoinbitcoin_core
0.4.3
bitcoinbitcoin_core
0.4.4
bitcoinbitcoin_core
0.4.4:rc2
bitcoinbitcoin_core
0.4.5
bitcoinbitcoin_core
0.4.6
bitcoinbitcoin_core
0.4.7:rc2
bitcoinbitcoin_core
0.5.0:rc
bitcoinbitcoin_core
0.5.3
bitcoinbitcoin_core
0.5.3.1
bitcoinbitcoin_core
0.5.4
bitcoinbitcoin_core
0.5.5
bitcoinbitcoin_core
0.5.6:rc2
bitcoinbitcoin_core
0.6.0.1
bitcoinbitcoin_core
0.6.0.2
bitcoinbitcoin_core
0.6.0.3
bitcoinbitcoin_core
0.6.0.4
bitcoinbitcoin_core
0.6.0.5
bitcoinbitcoin_core
0.6.0.6
bitcoinbitcoin_core
0.6.0.7
bitcoinbitcoin_core
0.6.0.8
bitcoinbitcoin_core
0.6.1
bitcoinbitcoin_core
0.6.2
bitcoinbitcoind
𝑥
≤ 0.4.4
bitcoinbitcoind
0.5.7
bitcoinbitcoind
0.6.0.0
bitcoinbitcoind
0.6.0.10:rc4
bitcoinbitcoind
0.6.3
bitcoinbitcoind
0.6.4:rc4
bitcoinbitcoind
0.7.0:rc1
bitcoinbitcoind
0.7.1
bitcoinbitcoind
0.7.2
𝑥
= Vulnerable software versions