RSS   Podatności dla 'Claymore dual miner'   RSS

2018-02-02
 
CVE-2018-6317

CWE-134
 

 
The remote management interface in Claymore Dual Miner 10.5 and earlier is vulnerable to an unauthenticated format string vulnerability, allowing remote attackers to read memory or cause a denial of service.

 
2017-12-05
 
CVE-2017-16930

CWE-119
 

 
The remote management interface on the Claymore Dual GPU miner 10.1 allows an unauthenticated remote attacker to execute arbitrary code due to a stack-based buffer overflow in the request handler. This can be exploited via a long API request that is mishandled during logging.

 
 
CVE-2017-16929

CWE-22
 

 
The remote management interface on the Claymore Dual GPU miner 10.1 is vulnerable to an authenticated directory traversal vulnerability exploited by issuing a specially crafted request, allowing a remote attacker to read/write arbitrary files. This can be exploited via ../ sequences in the pathname to miner_file or miner_getfile.

 


Copyright 2024, cxsecurity.com

 

Back to Top