ColossusCoinXT through 1.0.5 (a chain-based proof-of-stake cryptocurrency) allows a remote denial of service, exploitable by an attacker who acquires even a small amount of stake/coins in the system. The attacker sends invalid headers/blocks, which are stored on the victim's disk.
References
Link | Resource |
---|---|
http://fc19.ifca.ai/preproceedings/180-preproceedings.pdf | Technical Description Third Party Advisory |
https://github.com/ColossusCoinXT/ColossusCoinXT/compare/0223904...9666bb8 | Patch |
https://medium.com/%40dsl_uiuc/fake-stake-attacks-on-chain-based-proof-of-stake-cryptocurrencies-b8b05723f806 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-03-17T21:22:48
Updated: 2019-03-17T21:22:48
Reserved: 2018-11-10T00:00:00
Link: CVE-2018-19158
JSON object: View
NVD Information
Status : Modified
Published: 2019-03-21T16:00:30.140
Modified: 2023-11-07T02:55:25.180
Link: CVE-2018-19158
JSON object: View
Redhat Information
No data.
CWE