Vulnerability CVE-2018-12018
Published: 2018-07-04   Modified: 2018-07-05

Description:
The GetBlockHeadersMsg handler in the LES protocol implementation in Go Ethereum (aka geth) before 1.8.11 may lead to an access violation because of an integer signedness error for the array index, which allows attackers to launch a Denial of Service attack by sending a packet with a -1 query.Skip value. The vulnerable remote node would be crashed by such an attack immediately, aka the EPoD (Ethereum Packet of Death) issue.

Type:

CWE-129

 (Improper Validation of Array Index)

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial

 References:
https://github.com/ethereum/go-ethereum/commit/a5237a27eaf81946a3edb4fafe13ed6359d119e4
https://github.com/ethereum/go-ethereum/pull/16891
https://github.com/ethereum/go-ethereum/releases/tag/v1.8.11
https://peckshield.com/2018/06/27/EPoD/
Copyright 2024, cxsecurity.com

 

Back to Top